8243efa3dfd3aed21c27945441ae7e9349b43993dc17b9149e8c21cba136e799 | Triage

Sharing

General

Target

8243efa3dfd3aed21c27945441ae7e9349b43993dc17b9149e8c21cba136e799_NeikiAnalytics.exe
Size

192KB
Sample

240627-nklb7a1fpq
MD5

e8ad56bf5628086559757d955324f3e0
SHA1

c4d39d09e199b93091cdddd28b342f232a4d4929
SHA256

8243efa3dfd3aed21c27945441ae7e9349b43993dc17b9149e8c21cba136e799
SHA512

a1960599b27159e681faaf09c175ba74c909cc21b6c445af76c373bd3dbdf95674d303fa4c49c520c680bb4bbf572466f5f7b87f94a02079e59e6e0ee5266c06
SSDEEP

1536:x9ZWWQMzuuG9VsZnf6T5G1BLYah360+deQCuvq7Tk8nouy8O6Nuf51TQmQM22Owo:tWDMzuSf9nLq0+deiqXkcoutkTy27zU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8243efa3dfd3aed21c27945441ae7e9349b43993dc17b9149e8c21cba136e799_NeikiAnalytics.exe
- Size
  
  192KB
- MD5
  
  e8ad56bf5628086559757d955324f3e0
- SHA1
  
  c4d39d09e199b93091cdddd28b342f232a4d4929
- SHA256
  
  8243efa3dfd3aed21c27945441ae7e9349b43993dc17b9149e8c21cba136e799
- SHA512
  
  a1960599b27159e681faaf09c175ba74c909cc21b6c445af76c373bd3dbdf95674d303fa4c49c520c680bb4bbf572466f5f7b87f94a02079e59e6e0ee5266c06
- SSDEEP
  
  1536:x9ZWWQMzuuG9VsZnf6T5G1BLYah360+deQCuvq7Tk8nouy8O6Nuf51TQmQM22Owo:tWDMzuSf9nLq0+deiqXkcoutkTy27zU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2