04f52c322418fd4b822d8d8f25b864e34509fcffe3c7ec2ce292a633142038ea | Triage

Sharing

General

Target

04f52c322418fd4b822d8d8f25b864e34509fcffe3c7ec2ce292a633142038ea_NeikiAnalytics.exe
Size

94KB
Sample

240630-lcjghsyfpr
MD5

3a0d3f6e8854647b81f9ab57ac1835d0
SHA1

62d1775baabc50f15d1af4110d6a32789f9c9a17
SHA256

04f52c322418fd4b822d8d8f25b864e34509fcffe3c7ec2ce292a633142038ea
SHA512

fe909c96307720118d313d2baa40607ce761462c6a48f40f188162425d5e729a890c1bc8a61928c6ea29af0db29aa61ca378186156837d96ff0c2ddbe25a3bcd
SSDEEP

1536:LjfOwbniFzOv15HAvg+J2XWULPHq39KUIC0uGmVJHQj1BEsCOyiKbZ9rQJg:LrOwbgODwgY2XWUjH6KU90uGimj1ieyR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  04f52c322418fd4b822d8d8f25b864e34509fcffe3c7ec2ce292a633142038ea_NeikiAnalytics.exe
- Size
  
  94KB
- MD5
  
  3a0d3f6e8854647b81f9ab57ac1835d0
- SHA1
  
  62d1775baabc50f15d1af4110d6a32789f9c9a17
- SHA256
  
  04f52c322418fd4b822d8d8f25b864e34509fcffe3c7ec2ce292a633142038ea
- SHA512
  
  fe909c96307720118d313d2baa40607ce761462c6a48f40f188162425d5e729a890c1bc8a61928c6ea29af0db29aa61ca378186156837d96ff0c2ddbe25a3bcd
- SSDEEP
  
  1536:LjfOwbniFzOv15HAvg+J2XWULPHq39KUIC0uGmVJHQj1BEsCOyiKbZ9rQJg:LrOwbgODwgY2XWUjH6KU90uGimj1ieyR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2