06d942cb9a3eafa265a25cb0867d1bf0a74b84d41bea468fb4bbb0c6dce891ac | Triage

Sharing

General

Target

06d942cb9a3eafa265a25cb0867d1bf0a74b84d41bea468fb4bbb0c6dce891ac_NeikiAnalytics.exe
Size

320KB
Sample

240627-s9x5haycmb
MD5

eea83e5c6e1743421535310f82d84bd0
SHA1

6d4a50ed22953e881bca67d76aec389ed4267b99
SHA256

06d942cb9a3eafa265a25cb0867d1bf0a74b84d41bea468fb4bbb0c6dce891ac
SHA512

82450fa7b7edd1e1105b6a73db8ee0a4369d61b68c277f9ceaaf4d3d8092f7668b2daec4a65237284c443ef2ab345b1d36c9d48b52383ae4c244b249d385e12a
SSDEEP

6144:uBGtZcJOldw6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwx:wVlr54ujjgj8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  06d942cb9a3eafa265a25cb0867d1bf0a74b84d41bea468fb4bbb0c6dce891ac_NeikiAnalytics.exe
- Size
  
  320KB
- MD5
  
  eea83e5c6e1743421535310f82d84bd0
- SHA1
  
  6d4a50ed22953e881bca67d76aec389ed4267b99
- SHA256
  
  06d942cb9a3eafa265a25cb0867d1bf0a74b84d41bea468fb4bbb0c6dce891ac
- SHA512
  
  82450fa7b7edd1e1105b6a73db8ee0a4369d61b68c277f9ceaaf4d3d8092f7668b2daec4a65237284c443ef2ab345b1d36c9d48b52383ae4c244b249d385e12a
- SSDEEP
  
  6144:uBGtZcJOldw6/eKxSlKKZ74ueKxff0qjwszeX9z6/ojwx:wVlr54ujjgj8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2