a8a2cd1ef5948d47efde75fce1d35cc38370ad24fb02246654626132b5e33ba0 | Triage

Sharing

General

Target

a8a2cd1ef5948d47efde75fce1d35cc38370ad24fb02246654626132b5e33ba0_NeikiAnalytics.exe
Size

89KB
Sample

240629-m9r1lawepa
MD5

e1853783bab7256904d7a2ea4a2ee130
SHA1

3ff48bd1254676ce2fb82821ff497bec20b0df71
SHA256

a8a2cd1ef5948d47efde75fce1d35cc38370ad24fb02246654626132b5e33ba0
SHA512

91a3d0ecb9829bcdfa70d975ad27c0e67124619e9bde8ef1cd95319255c2005ecdf5a135c275e51fe542c2ef82b2e121adce3c6ae7c39e6f1fe7d12c82380012
SSDEEP

1536:HJqP3BRU4HAhvJyODKVFdCMjmM4HOcbW/4sqk9VrmyARQsrR+KRFR3RzR1URJrCk:kRU+O2VFqM4ucCfLmyAeOjb5ZXUf2iuS

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a8a2cd1ef5948d47efde75fce1d35cc38370ad24fb02246654626132b5e33ba0_NeikiAnalytics.exe
- Size
  
  89KB
- MD5
  
  e1853783bab7256904d7a2ea4a2ee130
- SHA1
  
  3ff48bd1254676ce2fb82821ff497bec20b0df71
- SHA256
  
  a8a2cd1ef5948d47efde75fce1d35cc38370ad24fb02246654626132b5e33ba0
- SHA512
  
  91a3d0ecb9829bcdfa70d975ad27c0e67124619e9bde8ef1cd95319255c2005ecdf5a135c275e51fe542c2ef82b2e121adce3c6ae7c39e6f1fe7d12c82380012
- SSDEEP
  
  1536:HJqP3BRU4HAhvJyODKVFdCMjmM4HOcbW/4sqk9VrmyARQsrR+KRFR3RzR1URJrCk:kRU+O2VFqM4ucCfLmyAeOjb5ZXUf2iuS
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2