8e93a55abef63d4e99c9322c8dfc4698f2aef5389cdace9c15bc2d537fd20274 | Triage

Sharing

General

Target

8e93a55abef63d4e99c9322c8dfc4698f2aef5389cdace9c15bc2d537fd20274_NeikiAnalytics.exe
Size

264KB
Sample

240628-kbe72asflm
MD5

33faa842af70670c16ed476319c02020
SHA1

8f01da6e875249a94df775f8c99e663c099a28ba
SHA256

8e93a55abef63d4e99c9322c8dfc4698f2aef5389cdace9c15bc2d537fd20274
SHA512

49186a31bec4d46be0e41ff3506750cdfbbfcc6b2668b06ef70a132849360c3b2dccaa292377d6c2b7b0fbbafa68ab0fccb48cc9282fbe88209f287101bf986e
SSDEEP

6144:YfrmUxnpui6yYPaIGckZay1aEI9Kq5pui6yYPaIGckv:Yfrm8pV6yYPOn17IpV6yYPo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8e93a55abef63d4e99c9322c8dfc4698f2aef5389cdace9c15bc2d537fd20274_NeikiAnalytics.exe
- Size
  
  264KB
- MD5
  
  33faa842af70670c16ed476319c02020
- SHA1
  
  8f01da6e875249a94df775f8c99e663c099a28ba
- SHA256
  
  8e93a55abef63d4e99c9322c8dfc4698f2aef5389cdace9c15bc2d537fd20274
- SHA512
  
  49186a31bec4d46be0e41ff3506750cdfbbfcc6b2668b06ef70a132849360c3b2dccaa292377d6c2b7b0fbbafa68ab0fccb48cc9282fbe88209f287101bf986e
- SSDEEP
  
  6144:YfrmUxnpui6yYPaIGckZay1aEI9Kq5pui6yYPaIGckv:Yfrm8pV6yYPOn17IpV6yYPo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2