070c7b2620f325300e98e4ae6d273f92fa9acecb3f7aef2372afa62859a96179 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

070c7b2620f325300e98e4ae6d273f92fa9acecb3f7aef2372afa62859a96179_NeikiAnalytics.exe
Size

125KB
Sample

240630-mjebtazbrj
MD5

258f31d620279f766f979b1c74a4d650
SHA1

37471a998c69141dbf1ae1396ede071a24984299
SHA256

070c7b2620f325300e98e4ae6d273f92fa9acecb3f7aef2372afa62859a96179
SHA512

e723df01018299b580c36395fe3e22d75328613252bd5bb59bc1c2cf3a7ef702d372d1e4849e4c2dfa0250eaac83e63898ebf254cae77e2eaca21388bc68793d
SSDEEP

3072:8BqN8v3L+b/chwCowz+VFzh8BmcA1WdTCn93OGey/ZhJakrPF:85TWchwCotzgmcfTCndOGeKTaG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  070c7b2620f325300e98e4ae6d273f92fa9acecb3f7aef2372afa62859a96179_NeikiAnalytics.exe
- Size
  
  125KB
- MD5
  
  258f31d620279f766f979b1c74a4d650
- SHA1
  
  37471a998c69141dbf1ae1396ede071a24984299
- SHA256
  
  070c7b2620f325300e98e4ae6d273f92fa9acecb3f7aef2372afa62859a96179
- SHA512
  
  e723df01018299b580c36395fe3e22d75328613252bd5bb59bc1c2cf3a7ef702d372d1e4849e4c2dfa0250eaac83e63898ebf254cae77e2eaca21388bc68793d
- SSDEEP
  
  3072:8BqN8v3L+b/chwCowz+VFzh8BmcA1WdTCn93OGey/ZhJakrPF:85TWchwCotzgmcfTCndOGeKTaG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2