20fbd4904bdeeb6af566250d1f7001bede8ac67018c112333d866995338ae59c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20fbd4904bdeeb6af566250d1f7001bede8ac67018c112333d866995338ae59c_NeikiAnalytics.exe
Size

96KB
Sample

240630-2yv1faybjd
MD5

dc3b997eedb0946201cf736b5f3920a0
SHA1

7cabc56f9fce7e9aab5b4365e09247c43552edaa
SHA256

20fbd4904bdeeb6af566250d1f7001bede8ac67018c112333d866995338ae59c
SHA512

72159dbc09deeb384f50c245e62df360bbbd03183c48ee61cde84a9b360ee4fe9698b81b16a991f71ad33b91ce18e528fd45bfdefaa14d46253f6cbaba3609da
SSDEEP

1536:HO0RNafrVYGk2cSzqN3bxyWKX9on5wCgGJAfhSTAv8ZQ8iRduV9jojTIvjrH:HO0XaDs2cSQ3U9i5wCgGJAD8iRd69jcs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  20fbd4904bdeeb6af566250d1f7001bede8ac67018c112333d866995338ae59c_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  dc3b997eedb0946201cf736b5f3920a0
- SHA1
  
  7cabc56f9fce7e9aab5b4365e09247c43552edaa
- SHA256
  
  20fbd4904bdeeb6af566250d1f7001bede8ac67018c112333d866995338ae59c
- SHA512
  
  72159dbc09deeb384f50c245e62df360bbbd03183c48ee61cde84a9b360ee4fe9698b81b16a991f71ad33b91ce18e528fd45bfdefaa14d46253f6cbaba3609da
- SSDEEP
  
  1536:HO0RNafrVYGk2cSzqN3bxyWKX9on5wCgGJAfhSTAv8ZQ8iRduV9jojTIvjrH:HO0XaDs2cSQ3U9i5wCgGJAD8iRd69jcs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2