916132d7d8685d570db788c7122ddf13b7607d0d778a0b338cfb0bd18c814d8b | Triage

Sharing

General

Target

916132d7d8685d570db788c7122ddf13b7607d0d778a0b338cfb0bd18c814d8b_NeikiAnalytics.exe
Size

89KB
Sample

240629-kz2e6svaph
MD5

192ead8c2e373a3bbd937eae0ee19880
SHA1

6bf8565b94ee9abc3fb613368796a4871471bc33
SHA256

916132d7d8685d570db788c7122ddf13b7607d0d778a0b338cfb0bd18c814d8b
SHA512

5742551d275ae6d14bf2acc27bea046187780a77cef2c960bf4f8060fd746144128efa76c14d3d17bc854083e869af8c25d9e9e6ccdeca58b1e00fb684f44d85
SSDEEP

1536:uCy4CjCYgTIlO4YMWuMhXHk0FPSyxWuRQID68a+VMKKTRVGFtUhQfR1WRaROR8R:GdxQIlrYMmhXH1WueRr4MKy3G7UEqMM6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  916132d7d8685d570db788c7122ddf13b7607d0d778a0b338cfb0bd18c814d8b_NeikiAnalytics.exe
- Size
  
  89KB
- MD5
  
  192ead8c2e373a3bbd937eae0ee19880
- SHA1
  
  6bf8565b94ee9abc3fb613368796a4871471bc33
- SHA256
  
  916132d7d8685d570db788c7122ddf13b7607d0d778a0b338cfb0bd18c814d8b
- SHA512
  
  5742551d275ae6d14bf2acc27bea046187780a77cef2c960bf4f8060fd746144128efa76c14d3d17bc854083e869af8c25d9e9e6ccdeca58b1e00fb684f44d85
- SSDEEP
  
  1536:uCy4CjCYgTIlO4YMWuMhXHk0FPSyxWuRQID68a+VMKKTRVGFtUhQfR1WRaROR8R:GdxQIlrYMmhXH1WueRr4MKy3G7UEqMM6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2