8d922219b223856401ba27df10c9d2583cd1c7e425d406d07c645a4f0f753188 | Triage

Sharing

General

Target

8d922219b223856401ba27df10c9d2583cd1c7e425d406d07c645a4f0f753188_NeikiAnalytics.exe
Size

385KB
Sample

240628-jr6jgs1fqp
MD5

0fd6a6bc579a891b7c689c5fbdb646d0
SHA1

a11519cd9af0748fa2e62e427fce4246e4381eab
SHA256

8d922219b223856401ba27df10c9d2583cd1c7e425d406d07c645a4f0f753188
SHA512

922440dc4e4f6a75d35bb2e37290991a31331bed2db3f303192a71b1d2e3d48239bc4203ec23760aff68e4202c57e59c81662a7a98f95f64ffb578bec2e3bb96
SSDEEP

6144:KynBFNEwW2sFj5tT3sFK4yLJsFj5tT3sFK6:p4wLs15tLsvyNs15tLs9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8d922219b223856401ba27df10c9d2583cd1c7e425d406d07c645a4f0f753188_NeikiAnalytics.exe
- Size
  
  385KB
- MD5
  
  0fd6a6bc579a891b7c689c5fbdb646d0
- SHA1
  
  a11519cd9af0748fa2e62e427fce4246e4381eab
- SHA256
  
  8d922219b223856401ba27df10c9d2583cd1c7e425d406d07c645a4f0f753188
- SHA512
  
  922440dc4e4f6a75d35bb2e37290991a31331bed2db3f303192a71b1d2e3d48239bc4203ec23760aff68e4202c57e59c81662a7a98f95f64ffb578bec2e3bb96
- SSDEEP
  
  6144:KynBFNEwW2sFj5tT3sFK4yLJsFj5tT3sFK6:p4wLs15tLsvyNs15tLs9
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2