96eb8ac40c5d743f0256e99af7d6c89e815c07e20705b2f1fbb1a14ea45d04fb | Triage

Sharing

General

Target

96eb8ac40c5d743f0256e99af7d6c89e815c07e20705b2f1fbb1a14ea45d04fb_NeikiAnalytics.exe
Size

165KB
Sample

240628-n89dxs1enr
MD5

35d0124c9daa3aa18f00a2ecca1526f0
SHA1

555b5d5e37e62262b4256e6d696e3b41019c6b88
SHA256

96eb8ac40c5d743f0256e99af7d6c89e815c07e20705b2f1fbb1a14ea45d04fb
SHA512

a4050b09228e08b684af5fcacb32a24e7d18f4be3db9a9cabed1ba46db90a00f4670f3dae872da82f93a05d438b42354b227b61babdfbd4e3c79115fd78f8e5b
SSDEEP

3072:V7Djev30C6WPIx4dnSQT3vQfEdArGzHq+egM5bylnO/hZP:V73ev30gPW4dnSQbQMdArGzHregqgnO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  96eb8ac40c5d743f0256e99af7d6c89e815c07e20705b2f1fbb1a14ea45d04fb_NeikiAnalytics.exe
- Size
  
  165KB
- MD5
  
  35d0124c9daa3aa18f00a2ecca1526f0
- SHA1
  
  555b5d5e37e62262b4256e6d696e3b41019c6b88
- SHA256
  
  96eb8ac40c5d743f0256e99af7d6c89e815c07e20705b2f1fbb1a14ea45d04fb
- SHA512
  
  a4050b09228e08b684af5fcacb32a24e7d18f4be3db9a9cabed1ba46db90a00f4670f3dae872da82f93a05d438b42354b227b61babdfbd4e3c79115fd78f8e5b
- SSDEEP
  
  3072:V7Djev30C6WPIx4dnSQT3vQfEdArGzHq+egM5bylnO/hZP:V73ev30gPW4dnSQbQMdArGzHregqgnO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2