9a6502f5ea83cec2992c10fb90553a045f0dd0b840732542618b091447477e6c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a6502f5ea83cec2992c10fb90553a045f0dd0b840732542618b091447477e6c_NeikiAnalytics.exe
Size

463KB
Sample

240628-qw5ajsverk
MD5

3da55c97e7b35f778110de3e981a0110
SHA1

c6adfff3b9ecb7330e7a2485484dec1476144424
SHA256

9a6502f5ea83cec2992c10fb90553a045f0dd0b840732542618b091447477e6c
SHA512

ee36036940d640231364f5a64405520248f2ce599c4b25f6832f8f7700510a3fffb8d60560cdccbb87fb991285681f4d5722d1aaafb222ac512ce99e6fc2704c
SSDEEP

6144:9PTwGJb4s5tTDUZNSN58VU5tTt50NoYnX5tTDUZNSN58VU5tTokBf7bmS:Zwm4s5t6NSN6G5tb0fX5t6NSN6G5tTvz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9a6502f5ea83cec2992c10fb90553a045f0dd0b840732542618b091447477e6c_NeikiAnalytics.exe
- Size
  
  463KB
- MD5
  
  3da55c97e7b35f778110de3e981a0110
- SHA1
  
  c6adfff3b9ecb7330e7a2485484dec1476144424
- SHA256
  
  9a6502f5ea83cec2992c10fb90553a045f0dd0b840732542618b091447477e6c
- SHA512
  
  ee36036940d640231364f5a64405520248f2ce599c4b25f6832f8f7700510a3fffb8d60560cdccbb87fb991285681f4d5722d1aaafb222ac512ce99e6fc2704c
- SSDEEP
  
  6144:9PTwGJb4s5tTDUZNSN58VU5tTt50NoYnX5tTDUZNSN58VU5tTokBf7bmS:Zwm4s5t6NSN6G5tb0fX5t6NSN6G5tTvz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2