684a8b90955c70f25db7791fa70a16da9e235674ef484b309859ddcf07c6e1d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

684a8b90955c70f25db7791fa70a16da9e235674ef484b309859ddcf07c6e1d6_NeikiAnalytics.exe
Size

52KB
Sample

240629-frse3svbrp
MD5

ec313b1a30cbbb410618d59e518f0900
SHA1

83d7017fa4bb687c16c75e9b296067d215a726b2
SHA256

684a8b90955c70f25db7791fa70a16da9e235674ef484b309859ddcf07c6e1d6
SHA512

cf2d0deb49fe5d3744af4936a9c2e0e31fd9f23cfa43954ef52f99e9eb8c86f28af006723c0e7234c11e5f72f46567592c41a0bd691387f4b582abb09018701d
SSDEEP

768:+vnF851CGmd4RtWrnKdTA3pwBGIHxwDCdC+Ny/1H5F/soMABvKWe:CnFQ1d5tWr1pNAC+N4JMAdKZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  684a8b90955c70f25db7791fa70a16da9e235674ef484b309859ddcf07c6e1d6_NeikiAnalytics.exe
- Size
  
  52KB
- MD5
  
  ec313b1a30cbbb410618d59e518f0900
- SHA1
  
  83d7017fa4bb687c16c75e9b296067d215a726b2
- SHA256
  
  684a8b90955c70f25db7791fa70a16da9e235674ef484b309859ddcf07c6e1d6
- SHA512
  
  cf2d0deb49fe5d3744af4936a9c2e0e31fd9f23cfa43954ef52f99e9eb8c86f28af006723c0e7234c11e5f72f46567592c41a0bd691387f4b582abb09018701d
- SSDEEP
  
  768:+vnF851CGmd4RtWrnKdTA3pwBGIHxwDCdC+Ny/1H5F/soMABvKWe:CnFQ1d5tWr1pNAC+N4JMAdKZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2