5c15f88a34a6e21f30b72b6603563fab8f7f945004d05a246fa32e02fb28644f | Triage

Sharing

General

Target

5c15f88a34a6e21f30b72b6603563fab8f7f945004d05a246fa32e02fb28644f_NeikiAnalytics.exe
Size

69KB
Sample

240629-ea6eyazfqb
MD5

0b512c26655526a25e0d0ce6d3056c10
SHA1

40aea545eea9997d48a953d3fd550fc3b2ef308a
SHA256

5c15f88a34a6e21f30b72b6603563fab8f7f945004d05a246fa32e02fb28644f
SHA512

9f9bb00892fd3326507d39fccc00f19a40b1a6046da3a50fc62f78f69a5e809fbe06e32a841aa5c81ce3202c2396f3f6b5fa781d1825dce5ce41f850c88a3c26
SSDEEP

1536:l+wQhqVEKTZd45FFgHWwjZ4PoNein/GFZCeDAyY:HQhqVEKTk5FQWwjqoNFn/GFZC1yY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5c15f88a34a6e21f30b72b6603563fab8f7f945004d05a246fa32e02fb28644f_NeikiAnalytics.exe
- Size
  
  69KB
- MD5
  
  0b512c26655526a25e0d0ce6d3056c10
- SHA1
  
  40aea545eea9997d48a953d3fd550fc3b2ef308a
- SHA256
  
  5c15f88a34a6e21f30b72b6603563fab8f7f945004d05a246fa32e02fb28644f
- SHA512
  
  9f9bb00892fd3326507d39fccc00f19a40b1a6046da3a50fc62f78f69a5e809fbe06e32a841aa5c81ce3202c2396f3f6b5fa781d1825dce5ce41f850c88a3c26
- SSDEEP
  
  1536:l+wQhqVEKTZd45FFgHWwjZ4PoNein/GFZCeDAyY:HQhqVEKTk5FQWwjqoNFn/GFZC1yY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2