00a980120b15de23dba5305cd2f1e81b52fca98da6a8495de132c0b4ab39abcc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00a980120b15de23dba5305cd2f1e81b52fca98da6a8495de132c0b4ab39abcc_NeikiAnalytics.exe
Size

302KB
Sample

240629-z97ghawgje
MD5

e2678948f02526195d4a4ec5777df970
SHA1

10bf4ac31349d7b058b58639c5d220a41c59a7ab
SHA256

00a980120b15de23dba5305cd2f1e81b52fca98da6a8495de132c0b4ab39abcc
SHA512

50eaa365feba7c4bb4789c376d68388614e7c19d2d3a7f5aa4758efa8763a85da8b46660b604e3bb1dc2cb5895c2a815274f5ac1e02fd584077cf438efd9100b
SSDEEP

6144:upPlo3jL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:2oTv8lXhuT9XvEhdfEmwlY1

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  00a980120b15de23dba5305cd2f1e81b52fca98da6a8495de132c0b4ab39abcc_NeikiAnalytics.exe
- Size
  
  302KB
- MD5
  
  e2678948f02526195d4a4ec5777df970
- SHA1
  
  10bf4ac31349d7b058b58639c5d220a41c59a7ab
- SHA256
  
  00a980120b15de23dba5305cd2f1e81b52fca98da6a8495de132c0b4ab39abcc
- SHA512
  
  50eaa365feba7c4bb4789c376d68388614e7c19d2d3a7f5aa4758efa8763a85da8b46660b604e3bb1dc2cb5895c2a815274f5ac1e02fd584077cf438efd9100b
- SSDEEP
  
  6144:upPlo3jL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:2oTv8lXhuT9XvEhdfEmwlY1
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2