2fcb1532941c7404bf39a774b2bf356902918db989ba40fda2c9f08d4412e047 | Triage

Sharing

General

Target

2fcb1532941c7404bf39a774b2bf356902918db989ba40fda2c9f08d4412e047_NeikiAnalytics.exe
Size

117KB
Sample

240628-3a9dlaxhkm
MD5

f8b4b3e91755b77bc54299b31a34f2f0
SHA1

d07a07ac4502d332b72af7154edb3991f589929e
SHA256

2fcb1532941c7404bf39a774b2bf356902918db989ba40fda2c9f08d4412e047
SHA512

2712fb3802181fd8361b85b86100f263fa61a9992d3683640d0a50faab015a05bd49507a4d5e74c6e11b407c422fb6d1ad7928153dafd4ea7d1e1a86f3c39c62
SSDEEP

1536:rungJ+soaqY/gjXllEC19mvtjlji2L3db2PbZuEsFFfUN1Avhw6JCM:6gJHgYqlEC19Ydb2Ptu1FFfUrQlM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2fcb1532941c7404bf39a774b2bf356902918db989ba40fda2c9f08d4412e047_NeikiAnalytics.exe
- Size
  
  117KB
- MD5
  
  f8b4b3e91755b77bc54299b31a34f2f0
- SHA1
  
  d07a07ac4502d332b72af7154edb3991f589929e
- SHA256
  
  2fcb1532941c7404bf39a774b2bf356902918db989ba40fda2c9f08d4412e047
- SHA512
  
  2712fb3802181fd8361b85b86100f263fa61a9992d3683640d0a50faab015a05bd49507a4d5e74c6e11b407c422fb6d1ad7928153dafd4ea7d1e1a86f3c39c62
- SSDEEP
  
  1536:rungJ+soaqY/gjXllEC19mvtjlji2L3db2PbZuEsFFfUN1Avhw6JCM:6gJHgYqlEC19Ydb2Ptu1FFfUrQlM
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2