a372cd132bfc8881060d7257654111a2c1e1cf0cb63ae1a7e806f4088a76cc1b | Triage

Sharing

General

Target

a372cd132bfc8881060d7257654111a2c1e1cf0cb63ae1a7e806f4088a76cc1b_NeikiAnalytics.exe
Size

52KB
Sample

240628-v6c19s1anl
MD5

fcb896b984ab2d7424aeb2727f1066d0
SHA1

96727f224b9803b2ecc474a5b381d478f9a447e6
SHA256

a372cd132bfc8881060d7257654111a2c1e1cf0cb63ae1a7e806f4088a76cc1b
SHA512

5176b0324b7957a8c1143a14b69711286ddff5701dd120f46533738d659f3d83e74c36dbec6cf87b69f1d889c1dbfd95b1183acb670d8296b5a65ed641007d11
SSDEEP

768:gh212AvrZ/ujC/dk5hzk9f80UOiTiN/1H5F/s/MABvKWe:gh2cA4jWyzk9XlCiH6MAdKZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a372cd132bfc8881060d7257654111a2c1e1cf0cb63ae1a7e806f4088a76cc1b_NeikiAnalytics.exe
- Size
  
  52KB
- MD5
  
  fcb896b984ab2d7424aeb2727f1066d0
- SHA1
  
  96727f224b9803b2ecc474a5b381d478f9a447e6
- SHA256
  
  a372cd132bfc8881060d7257654111a2c1e1cf0cb63ae1a7e806f4088a76cc1b
- SHA512
  
  5176b0324b7957a8c1143a14b69711286ddff5701dd120f46533738d659f3d83e74c36dbec6cf87b69f1d889c1dbfd95b1183acb670d8296b5a65ed641007d11
- SSDEEP
  
  768:gh212AvrZ/ujC/dk5hzk9f80UOiTiN/1H5F/s/MABvKWe:gh2cA4jWyzk9XlCiH6MAdKZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2