58ae91af72185feb370c05632e125ded9b0012415e61a5c6e3d4af8450f2a24a | Triage

Sharing

General

Target

58ae91af72185feb370c05632e125ded9b0012415e61a5c6e3d4af8450f2a24a_NeikiAnalytics.exe
Size

120KB
Sample

240628-brbecawbpj
MD5

c22af7f1ba43ba36bedc4afff6aa6880
SHA1

c0efc39e649421b14720062d4c447a25382858fc
SHA256

58ae91af72185feb370c05632e125ded9b0012415e61a5c6e3d4af8450f2a24a
SHA512

bff264058fdf901c7c41b40108775d56bc2c875139cc2ee458109caba112e591bbb7bed80576748f34571bafdf68aad983226b4e3e4569523aa733a08999f7ce
SSDEEP

3072:p40id9dyp+HuQCzYkhNYvvuRNPi/mjRrz3C:p40OIgCphNY+RNPi/GC

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  58ae91af72185feb370c05632e125ded9b0012415e61a5c6e3d4af8450f2a24a_NeikiAnalytics.exe
- Size
  
  120KB
- MD5
  
  c22af7f1ba43ba36bedc4afff6aa6880
- SHA1
  
  c0efc39e649421b14720062d4c447a25382858fc
- SHA256
  
  58ae91af72185feb370c05632e125ded9b0012415e61a5c6e3d4af8450f2a24a
- SHA512
  
  bff264058fdf901c7c41b40108775d56bc2c875139cc2ee458109caba112e591bbb7bed80576748f34571bafdf68aad983226b4e3e4569523aa733a08999f7ce
- SSDEEP
  
  3072:p40id9dyp+HuQCzYkhNYvvuRNPi/mjRrz3C:p40OIgCphNY+RNPi/GC
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2