920afa1d7a4be7cb1f77f7af44b8505c42553400a896d9af491a4fdce1363010 | Triage

Sharing

General

Target

920afa1d7a4be7cb1f77f7af44b8505c42553400a896d9af491a4fdce1363010_NeikiAnalytics.exe
Size

256KB
Sample

240628-lxw84swcqj
MD5

b6a0fb5b14898f28bbb1a9361f9d5e90
SHA1

de7b212c0c692be46c571aa262e3c7244945cc06
SHA256

920afa1d7a4be7cb1f77f7af44b8505c42553400a896d9af491a4fdce1363010
SHA512

e850f326098aec322ce7a17ea3ebdfabb556c91c0c4506af1797b480f98bf5701214a53a678c5f74b5927c61a138e44877e7b45edc7cda27597d8bc4d825f4a4
SSDEEP

6144:Wm50jyhpzTRi1Df44rQD85k/hQO+zrWnAdqjeOpKfduBU:wupvRWprQg5W/+zrWAI5KFuU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  920afa1d7a4be7cb1f77f7af44b8505c42553400a896d9af491a4fdce1363010_NeikiAnalytics.exe
- Size
  
  256KB
- MD5
  
  b6a0fb5b14898f28bbb1a9361f9d5e90
- SHA1
  
  de7b212c0c692be46c571aa262e3c7244945cc06
- SHA256
  
  920afa1d7a4be7cb1f77f7af44b8505c42553400a896d9af491a4fdce1363010
- SHA512
  
  e850f326098aec322ce7a17ea3ebdfabb556c91c0c4506af1797b480f98bf5701214a53a678c5f74b5927c61a138e44877e7b45edc7cda27597d8bc4d825f4a4
- SSDEEP
  
  6144:Wm50jyhpzTRi1Df44rQD85k/hQO+zrWnAdqjeOpKfduBU:wupvRWprQg5W/+zrWAI5KFuU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2