2172edfbe4bd5b4bf00e6e801e1a40fce93fca57f4b6e2bed608e4b206172f27 | Triage

Sharing

General

Target

2172edfbe4bd5b4bf00e6e801e1a40fce93fca57f4b6e2bed608e4b206172f27_NeikiAnalytics.exe
Size

401KB
Sample

240630-22zg2a1hnm
MD5

2f264e5b2d1c8490e8a5588c8b0714b0
SHA1

2fab80be0eadf3b31849926ed8bce80889ef3c19
SHA256

2172edfbe4bd5b4bf00e6e801e1a40fce93fca57f4b6e2bed608e4b206172f27
SHA512

6b1f1eb023a34f98c64e0ad004f06ec8207b8a0f47f2c10823eca99dbdd7927e00658278b1e990043792b446649b9379279f82aa8679f6a19aaadf06d9d2bdbc
SSDEEP

6144:Lej4DOP0mydbS7ndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836PGyA7:Lej4QytyndpV6yYP4rbpV6yYPg058KrY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2172edfbe4bd5b4bf00e6e801e1a40fce93fca57f4b6e2bed608e4b206172f27_NeikiAnalytics.exe
- Size
  
  401KB
- MD5
  
  2f264e5b2d1c8490e8a5588c8b0714b0
- SHA1
  
  2fab80be0eadf3b31849926ed8bce80889ef3c19
- SHA256
  
  2172edfbe4bd5b4bf00e6e801e1a40fce93fca57f4b6e2bed608e4b206172f27
- SHA512
  
  6b1f1eb023a34f98c64e0ad004f06ec8207b8a0f47f2c10823eca99dbdd7927e00658278b1e990043792b446649b9379279f82aa8679f6a19aaadf06d9d2bdbc
- SSDEEP
  
  6144:Lej4DOP0mydbS7ndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836PGyA7:Lej4QytyndpV6yYP4rbpV6yYPg058KrY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2