19658cff080bc051a337ef6831b1d717738a7470683b9a607993ba37f718939a | Triage

Sharing

General

Target

19658cff080bc051a337ef6831b1d717738a7470683b9a607993ba37f718939a_NeikiAnalytics.exe
Size

360KB
Sample

240627-zqb69azglb
MD5

1138c31f1b518fd04d7a50cccfe9b8f0
SHA1

6a011c8255474805d68814085ecb765f57b87380
SHA256

19658cff080bc051a337ef6831b1d717738a7470683b9a607993ba37f718939a
SHA512

36e823e841403bdd679d7e598b2261fae00a1154079ff20573f60eb12bde76020ddfc68eb36524811befbcef075e765414b9ee780618a06d13efed1daa2910bb
SSDEEP

6144:0QIe8tZyACpX2/mnbzvdLaD6OkPgl6bmIjlQFxU:068fRCpXImbzQD6OkPgl6bmIjKxU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  19658cff080bc051a337ef6831b1d717738a7470683b9a607993ba37f718939a_NeikiAnalytics.exe
- Size
  
  360KB
- MD5
  
  1138c31f1b518fd04d7a50cccfe9b8f0
- SHA1
  
  6a011c8255474805d68814085ecb765f57b87380
- SHA256
  
  19658cff080bc051a337ef6831b1d717738a7470683b9a607993ba37f718939a
- SHA512
  
  36e823e841403bdd679d7e598b2261fae00a1154079ff20573f60eb12bde76020ddfc68eb36524811befbcef075e765414b9ee780618a06d13efed1daa2910bb
- SSDEEP
  
  6144:0QIe8tZyACpX2/mnbzvdLaD6OkPgl6bmIjlQFxU:068fRCpXImbzQD6OkPgl6bmIjKxU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2