b7ee5c965328bfc4abb73dd1467188db7d85d4cb7de1ec07fde52ed8db1e755e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7ee5c965328bfc4abb73dd1467188db7d85d4cb7de1ec07fde52ed8db1e755e_NeikiAnalytics.exe
Size

387KB
Sample

240629-xk7pvswhqr
MD5

4bec7724c589e446e14e443579c6c3c0
SHA1

d065f67cc00ea0bfbdef277dddd699d38d0acd59
SHA256

b7ee5c965328bfc4abb73dd1467188db7d85d4cb7de1ec07fde52ed8db1e755e
SHA512

2dec4d7240a19296cc0eff95f89075994ea7defc771f6989d309eee104364bad591e66c3426f3bf97daf330fc087129ff6bffa3a34e91215e730888f13bb999c
SSDEEP

6144:lcnfBw8i1b2AuHtOEgHixuqjwszeXmpzKPJG9EeIMT:lqi1b2AugHiPjoPJG9EeIW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b7ee5c965328bfc4abb73dd1467188db7d85d4cb7de1ec07fde52ed8db1e755e_NeikiAnalytics.exe
- Size
  
  387KB
- MD5
  
  4bec7724c589e446e14e443579c6c3c0
- SHA1
  
  d065f67cc00ea0bfbdef277dddd699d38d0acd59
- SHA256
  
  b7ee5c965328bfc4abb73dd1467188db7d85d4cb7de1ec07fde52ed8db1e755e
- SHA512
  
  2dec4d7240a19296cc0eff95f89075994ea7defc771f6989d309eee104364bad591e66c3426f3bf97daf330fc087129ff6bffa3a34e91215e730888f13bb999c
- SSDEEP
  
  6144:lcnfBw8i1b2AuHtOEgHixuqjwszeXmpzKPJG9EeIMT:lqi1b2AugHiPjoPJG9EeIW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2