20ada02e9c4d118907b993f7602d62a2014c28af73f71814f953f323bff00532 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20ada02e9c4d118907b993f7602d62a2014c28af73f71814f953f323bff00532_NeikiAnalytics.exe
Size

50KB
Sample

240630-2v8r5ayamf
MD5

e9fbfccd2765beba44c285f2e3c0c310
SHA1

e7df1f5c29471f5b3f69dea3624e471c4d48373a
SHA256

20ada02e9c4d118907b993f7602d62a2014c28af73f71814f953f323bff00532
SHA512

22e3ceef362233448c86fd40f41dad0ddeaac280284edc58e6038416b53eb561459e944d77908812d02626b8ea4b7062c7420fa63cda8f0dc112034fb1c6ba44
SSDEEP

768:xWtUwUEKA5Bkw1f8JwP9/ti8pfWObRnimjxS/1H5K42+j:6UwUEiw1UqP3iqL36x28

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  20ada02e9c4d118907b993f7602d62a2014c28af73f71814f953f323bff00532_NeikiAnalytics.exe
- Size
  
  50KB
- MD5
  
  e9fbfccd2765beba44c285f2e3c0c310
- SHA1
  
  e7df1f5c29471f5b3f69dea3624e471c4d48373a
- SHA256
  
  20ada02e9c4d118907b993f7602d62a2014c28af73f71814f953f323bff00532
- SHA512
  
  22e3ceef362233448c86fd40f41dad0ddeaac280284edc58e6038416b53eb561459e944d77908812d02626b8ea4b7062c7420fa63cda8f0dc112034fb1c6ba44
- SSDEEP
  
  768:xWtUwUEKA5Bkw1f8JwP9/ti8pfWObRnimjxS/1H5K42+j:6UwUEiw1UqP3iqL36x28
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2