22391519f391cb078b9fa7531e00ab13e8c1ad8502605aa59935fc0a2362b839 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22391519f391cb078b9fa7531e00ab13e8c1ad8502605aa59935fc0a2362b839_NeikiAnalytics.exe
Size

96KB
Sample

240630-29l7nsydpb
MD5

239f579ded452af207678c9b8185c4e0
SHA1

e11bc08992a1221d618f811bfab5c7e220c65ddb
SHA256

22391519f391cb078b9fa7531e00ab13e8c1ad8502605aa59935fc0a2362b839
SHA512

807428426f2fcd40f252a9c4509fe2b2d3ef05204626cff4d269b75478c5809ad2b73877fd1d1b11432370f857e35cb67e5e63e4ecb028b85bf492b328c8c4c7
SSDEEP

3072:Ha68epCqx1J8MxZ4MjyU1mMrAd69jc0v:/8esqxJ5BAd6NV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  22391519f391cb078b9fa7531e00ab13e8c1ad8502605aa59935fc0a2362b839_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  239f579ded452af207678c9b8185c4e0
- SHA1
  
  e11bc08992a1221d618f811bfab5c7e220c65ddb
- SHA256
  
  22391519f391cb078b9fa7531e00ab13e8c1ad8502605aa59935fc0a2362b839
- SHA512
  
  807428426f2fcd40f252a9c4509fe2b2d3ef05204626cff4d269b75478c5809ad2b73877fd1d1b11432370f857e35cb67e5e63e4ecb028b85bf492b328c8c4c7
- SSDEEP
  
  3072:Ha68epCqx1J8MxZ4MjyU1mMrAd69jc0v:/8esqxJ5BAd6NV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2