9c8cd13bdc2bce258f139578d52610f36a1c912a68646017601a33a3eb09a7d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9c8cd13bdc2bce258f139578d52610f36a1c912a68646017601a33a3eb09a7d6_NeikiAnalytics.exe
Size

128KB
Sample

240628-rxh95sxekl
MD5

c8a91ec2afc21bb12e59f74b9e9119e0
SHA1

6630435e9f541cef8058252162b1441546f3fb11
SHA256

9c8cd13bdc2bce258f139578d52610f36a1c912a68646017601a33a3eb09a7d6
SHA512

9f701ec42f935e0bc7a2356ede2fd6370e586b8c9330367e2286fc2521c59f0015bf93263e04b29059a9087de413a128b6cf18453ccf9e12b110628f4cb225cf
SSDEEP

3072:74vsy6GbHm7hHRV4sVqZ2fQkbn1vVAva63HePH/RAPJis2Ht3IjXq:0R6wY1f4sg4fQkjxqvak+PH/RARMHG2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9c8cd13bdc2bce258f139578d52610f36a1c912a68646017601a33a3eb09a7d6_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  c8a91ec2afc21bb12e59f74b9e9119e0
- SHA1
  
  6630435e9f541cef8058252162b1441546f3fb11
- SHA256
  
  9c8cd13bdc2bce258f139578d52610f36a1c912a68646017601a33a3eb09a7d6
- SHA512
  
  9f701ec42f935e0bc7a2356ede2fd6370e586b8c9330367e2286fc2521c59f0015bf93263e04b29059a9087de413a128b6cf18453ccf9e12b110628f4cb225cf
- SSDEEP
  
  3072:74vsy6GbHm7hHRV4sVqZ2fQkbn1vVAva63HePH/RAPJis2Ht3IjXq:0R6wY1f4sg4fQkjxqvak+PH/RARMHG2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2