22b7419214a39565f39b18571d2e7afa55504bc55fb2e81021ff530b5467f2d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22b7419214a39565f39b18571d2e7afa55504bc55fb2e81021ff530b5467f2d7_NeikiAnalytics.exe
Size

64KB
Sample

240630-3epvrayfje
MD5

61ccd9dd212c1a62be239aebc2cb3d50
SHA1

dcd06f5635c5918c834e32283cc9168b3bf64ea0
SHA256

22b7419214a39565f39b18571d2e7afa55504bc55fb2e81021ff530b5467f2d7
SHA512

e9fcdaea49944273d09f020d68433a042ad5e03059b050646d3d0b4d58dd0f5ab8c89154c44da603fa8bb71afcc5a4144a31dd0a553b2c48425028aa87f0cb90
SSDEEP

1536:YkFQETSVdnNr1Zca0PkZFEGWOsT8l4110tXUwXfzwv:aVMLHn105Pzwv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  22b7419214a39565f39b18571d2e7afa55504bc55fb2e81021ff530b5467f2d7_NeikiAnalytics.exe
- Size
  
  64KB
- MD5
  
  61ccd9dd212c1a62be239aebc2cb3d50
- SHA1
  
  dcd06f5635c5918c834e32283cc9168b3bf64ea0
- SHA256
  
  22b7419214a39565f39b18571d2e7afa55504bc55fb2e81021ff530b5467f2d7
- SHA512
  
  e9fcdaea49944273d09f020d68433a042ad5e03059b050646d3d0b4d58dd0f5ab8c89154c44da603fa8bb71afcc5a4144a31dd0a553b2c48425028aa87f0cb90
- SSDEEP
  
  1536:YkFQETSVdnNr1Zca0PkZFEGWOsT8l4110tXUwXfzwv:aVMLHn105Pzwv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2