90e1325c85cc9ce4abc62290c570def96d3d9db07a78cf591fa0a88de738a722 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90e1325c85cc9ce4abc62290c570def96d3d9db07a78cf591fa0a88de738a722_NeikiAnalytics.exe
Size

208KB
Sample

240628-letehavejp
MD5

e3de794875c6e4b932d9fa325615d760
SHA1

355fa6beea23e46788c3fd5b1f2edabc0f654c20
SHA256

90e1325c85cc9ce4abc62290c570def96d3d9db07a78cf591fa0a88de738a722
SHA512

184275d9517d53d73814e00fb258f3f3978a0373e017d59c640c8c46304eadff0feda4f7abbf9f5bc4809ff2037976629b3c4270d41d5f72fd52329f46c3e254
SSDEEP

6144:SGoA9IPchV9/z3SDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55KmC:toqIPcb97ChtMtkM71r1MSXqPix55Kx

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  90e1325c85cc9ce4abc62290c570def96d3d9db07a78cf591fa0a88de738a722_NeikiAnalytics.exe
- Size
  
  208KB
- MD5
  
  e3de794875c6e4b932d9fa325615d760
- SHA1
  
  355fa6beea23e46788c3fd5b1f2edabc0f654c20
- SHA256
  
  90e1325c85cc9ce4abc62290c570def96d3d9db07a78cf591fa0a88de738a722
- SHA512
  
  184275d9517d53d73814e00fb258f3f3978a0373e017d59c640c8c46304eadff0feda4f7abbf9f5bc4809ff2037976629b3c4270d41d5f72fd52329f46c3e254
- SSDEEP
  
  6144:SGoA9IPchV9/z3SDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55KmC:toqIPcb97ChtMtkM71r1MSXqPix55Kx
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2