726ea3585ff93715eb9600772b891fc79cd4dcf5918408733afa671ffcf16b20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

726ea3585ff93715eb9600772b891fc79cd4dcf5918408733afa671ffcf16b20_NeikiAnalytics.exe
Size

362KB
Sample

240628-dr2bwa1crn
MD5

bfe3c6f9c2cdbabce6de66ff3c43c870
SHA1

f2b330139665f540faa47d40b3325e520ece4925
SHA256

726ea3585ff93715eb9600772b891fc79cd4dcf5918408733afa671ffcf16b20
SHA512

f67e1021cd08662cbfbffed22b78649f7e2f4c6fbb94dd354282d109c38d62740dd9a00f67837d9d39bd5ebf594927510d3a422f07c08e1729b0099dd9aca4a0
SSDEEP

6144:EJNg2jYPmKZDtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZn:wNg2jYPmmtmuMtrQ07nGWxWSsmiMyh93

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  726ea3585ff93715eb9600772b891fc79cd4dcf5918408733afa671ffcf16b20_NeikiAnalytics.exe
- Size
  
  362KB
- MD5
  
  bfe3c6f9c2cdbabce6de66ff3c43c870
- SHA1
  
  f2b330139665f540faa47d40b3325e520ece4925
- SHA256
  
  726ea3585ff93715eb9600772b891fc79cd4dcf5918408733afa671ffcf16b20
- SHA512
  
  f67e1021cd08662cbfbffed22b78649f7e2f4c6fbb94dd354282d109c38d62740dd9a00f67837d9d39bd5ebf594927510d3a422f07c08e1729b0099dd9aca4a0
- SSDEEP
  
  6144:EJNg2jYPmKZDtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZn:wNg2jYPmmtmuMtrQ07nGWxWSsmiMyh93
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2