8dea2201a896b5718c5ef5371e167efcaeb60b59e436624e231069b29c8262e8 | Triage

Sharing

General

Target

8dea2201a896b5718c5ef5371e167efcaeb60b59e436624e231069b29c8262e8_NeikiAnalytics.exe
Size

80KB
Sample

240628-jx4xvayfng
MD5

1b293b8ed91e223187f11b571b4a30b0
SHA1

4542ac5b0324699345f9a31647e14e3d943a55ac
SHA256

8dea2201a896b5718c5ef5371e167efcaeb60b59e436624e231069b29c8262e8
SHA512

1b35280fe561d7483a35ada3ee5468022eb0aaa1cec8e8def7295cde4dcc15bb86cbff8ee9c20242862275e79b29f73c03f38282dbeea1c4ded929e7a0cc0525
SSDEEP

1536:Sh1h9f68yK4FDzS0HZPZSQXOupZVB2LGS5DUHRbPa9b6i+sIk:Szf685AIQXOukGS5DSCopsIk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8dea2201a896b5718c5ef5371e167efcaeb60b59e436624e231069b29c8262e8_NeikiAnalytics.exe
- Size
  
  80KB
- MD5
  
  1b293b8ed91e223187f11b571b4a30b0
- SHA1
  
  4542ac5b0324699345f9a31647e14e3d943a55ac
- SHA256
  
  8dea2201a896b5718c5ef5371e167efcaeb60b59e436624e231069b29c8262e8
- SHA512
  
  1b35280fe561d7483a35ada3ee5468022eb0aaa1cec8e8def7295cde4dcc15bb86cbff8ee9c20242862275e79b29f73c03f38282dbeea1c4ded929e7a0cc0525
- SSDEEP
  
  1536:Sh1h9f68yK4FDzS0HZPZSQXOupZVB2LGS5DUHRbPa9b6i+sIk:Szf685AIQXOukGS5DSCopsIk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2