065a34baf004bf5ab2d5069a6812c37b6c1b60eae443e48ac69ada926bcd8285 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

065a34baf004bf5ab2d5069a6812c37b6c1b60eae443e48ac69ada926bcd8285_NeikiAnalytics.exe
Size

314KB
Sample

240628-tpblfayhkl
MD5

a24c2692c6b863ef032bb0ea4dd624b0
SHA1

5ad1692c4a992aa674ca54a1fb40554c14bcb696
SHA256

065a34baf004bf5ab2d5069a6812c37b6c1b60eae443e48ac69ada926bcd8285
SHA512

652fb7748e4f18921d6cc935f1b9bcab7a913e856e8df71ba66d3c466b65cb4c73db41c6c0b46afab87d02aa34977b2e33af87486beaf282afa57266045a2585
SSDEEP

6144:7uBnwij6MB8MhjwszeXmr8SeNpgdyuH1lFDjC:7uBnB6Najb87gP3C

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  065a34baf004bf5ab2d5069a6812c37b6c1b60eae443e48ac69ada926bcd8285_NeikiAnalytics.exe
- Size
  
  314KB
- MD5
  
  a24c2692c6b863ef032bb0ea4dd624b0
- SHA1
  
  5ad1692c4a992aa674ca54a1fb40554c14bcb696
- SHA256
  
  065a34baf004bf5ab2d5069a6812c37b6c1b60eae443e48ac69ada926bcd8285
- SHA512
  
  652fb7748e4f18921d6cc935f1b9bcab7a913e856e8df71ba66d3c466b65cb4c73db41c6c0b46afab87d02aa34977b2e33af87486beaf282afa57266045a2585
- SSDEEP
  
  6144:7uBnwij6MB8MhjwszeXmr8SeNpgdyuH1lFDjC:7uBnB6Najb87gP3C
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2