96afacb1bc0613aae753c9b5626e9fbe25e4d94b2c06b9449bb6109e88be1241 | Triage

Sharing

General

Target

96afacb1bc0613aae753c9b5626e9fbe25e4d94b2c06b9449bb6109e88be1241_NeikiAnalytics.exe
Size

461KB
Sample

240628-n4qe9a1cqp
MD5

d2b441809eac80bbfa27b99d72a9caa0
SHA1

29e831d7ddd2210942f7899c295e2e53e4d32180
SHA256

96afacb1bc0613aae753c9b5626e9fbe25e4d94b2c06b9449bb6109e88be1241
SHA512

89fb5ea0dad176bc6b09eee6bd5478539c9acdbeb3dc620f09c14bfedd2d7ce39ba5ec6fd3c2fd37d5e318cf36945f63a4459e106539f88333c97a4dc62f15ad
SSDEEP

6144:G0Tf8+f8NQDVi3ULUgNQPi3UPUgNQViEUjUgN:GM0riUJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  96afacb1bc0613aae753c9b5626e9fbe25e4d94b2c06b9449bb6109e88be1241_NeikiAnalytics.exe
- Size
  
  461KB
- MD5
  
  d2b441809eac80bbfa27b99d72a9caa0
- SHA1
  
  29e831d7ddd2210942f7899c295e2e53e4d32180
- SHA256
  
  96afacb1bc0613aae753c9b5626e9fbe25e4d94b2c06b9449bb6109e88be1241
- SHA512
  
  89fb5ea0dad176bc6b09eee6bd5478539c9acdbeb3dc620f09c14bfedd2d7ce39ba5ec6fd3c2fd37d5e318cf36945f63a4459e106539f88333c97a4dc62f15ad
- SSDEEP
  
  6144:G0Tf8+f8NQDVi3ULUgNQPi3UPUgNQViEUjUgN:GM0riUJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2