64de8b72ece5b4b20e9d6e67b41e5258c318a32fd7a6036505468b363d6accce | Triage

Sharing

General

Target

64de8b72ece5b4b20e9d6e67b41e5258c318a32fd7a6036505468b363d6accce_NeikiAnalytics.exe
Size

63KB
Sample

240629-fbr5dathmm
MD5

719a9ae1214d7d05c607400f8ed87060
SHA1

6908fc6e55eb0818fc936d9b5e7343ae6d92e4f2
SHA256

64de8b72ece5b4b20e9d6e67b41e5258c318a32fd7a6036505468b363d6accce
SHA512

d256496509526e32bca24ad6c778571b7308494618a7a1059b2e94927f2d29e39787085265e9453fe1b27a19e2e980f5761cc8f5e168730e16aa35b25294ad35
SSDEEP

768:cTQhSAsu5TbDyvGlG0K8cT1c6C8ty8TjYfexlV/1H5oVEi3amrUTvn93b7NRDMFp:cXu5Lg02TjYk9+VREn9rjDHE

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  64de8b72ece5b4b20e9d6e67b41e5258c318a32fd7a6036505468b363d6accce_NeikiAnalytics.exe
- Size
  
  63KB
- MD5
  
  719a9ae1214d7d05c607400f8ed87060
- SHA1
  
  6908fc6e55eb0818fc936d9b5e7343ae6d92e4f2
- SHA256
  
  64de8b72ece5b4b20e9d6e67b41e5258c318a32fd7a6036505468b363d6accce
- SHA512
  
  d256496509526e32bca24ad6c778571b7308494618a7a1059b2e94927f2d29e39787085265e9453fe1b27a19e2e980f5761cc8f5e168730e16aa35b25294ad35
- SSDEEP
  
  768:cTQhSAsu5TbDyvGlG0K8cT1c6C8ty8TjYfexlV/1H5oVEi3amrUTvn93b7NRDMFp:cXu5Lg02TjYk9+VREn9rjDHE
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2