415e39e2a3c6b760dec4fea03494ee00a25dbcab02338a8457eefb8459033802 | Triage

Sharing

General

Target

415e39e2a3c6b760dec4fea03494ee00a25dbcab02338a8457eefb8459033802_NeikiAnalytics.exe
Size

128KB
Sample

240629-bg4cdaxbrf
MD5

cf0d11ff82e16b172d9438787d294e10
SHA1

f2b504669a79a45401b43facd1537af42eef43c1
SHA256

415e39e2a3c6b760dec4fea03494ee00a25dbcab02338a8457eefb8459033802
SHA512

dfaa2319c79316346ecea448e2e2c645e0b779d71782e6b5c3ee8d6f39e5bae6ae612a395dcf9c809fe2b9f60906a7b6a91bc12440e02d1e9555fd28cf1f8292
SSDEEP

3072:UgAJ94OqHyHEtNDUrFmE8kIUOT57Fri3QyDrBDrLXfzoeqarm9mTKpAImA:vAzqSHEtWrFR8yOTlFrihDrNXfxqySSQ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  415e39e2a3c6b760dec4fea03494ee00a25dbcab02338a8457eefb8459033802_NeikiAnalytics.exe
- Size
  
  128KB
- MD5
  
  cf0d11ff82e16b172d9438787d294e10
- SHA1
  
  f2b504669a79a45401b43facd1537af42eef43c1
- SHA256
  
  415e39e2a3c6b760dec4fea03494ee00a25dbcab02338a8457eefb8459033802
- SHA512
  
  dfaa2319c79316346ecea448e2e2c645e0b779d71782e6b5c3ee8d6f39e5bae6ae612a395dcf9c809fe2b9f60906a7b6a91bc12440e02d1e9555fd28cf1f8292
- SSDEEP
  
  3072:UgAJ94OqHyHEtNDUrFmE8kIUOT57Fri3QyDrBDrLXfzoeqarm9mTKpAImA:vAzqSHEtWrFR8yOTlFrihDrNXfxqySSQ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2