0acdc4ebf37b91a28237f1a6c53e705979768bb88b5016d9ccbcac730435c6a1 | Triage

Sharing

General

Target

0acdc4ebf37b91a28237f1a6c53e705979768bb88b5016d9ccbcac730435c6a1_NeikiAnalytics.exe
Size

335KB
Sample

240630-n48xlaxdrg
MD5

48f8ed786aec6d7cbcfb48695863f860
SHA1

a2a6e1b2bff20876f38d30bd5db53d16bc0ba924
SHA256

0acdc4ebf37b91a28237f1a6c53e705979768bb88b5016d9ccbcac730435c6a1
SHA512

7abd9c42bedad1fb9cb6d78123984cac0e4b7a2c1bf2d26eb01bc13bff69db71efbb729eaa0362b3c8e75a0e285801466f8e697b0aeb1220eb5dc3fb1d68654e
SSDEEP

6144:JtH+2vLvwU/4qwvwU/4qvvwevwU/4q+vwk/4q7:DHf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0acdc4ebf37b91a28237f1a6c53e705979768bb88b5016d9ccbcac730435c6a1_NeikiAnalytics.exe
- Size
  
  335KB
- MD5
  
  48f8ed786aec6d7cbcfb48695863f860
- SHA1
  
  a2a6e1b2bff20876f38d30bd5db53d16bc0ba924
- SHA256
  
  0acdc4ebf37b91a28237f1a6c53e705979768bb88b5016d9ccbcac730435c6a1
- SHA512
  
  7abd9c42bedad1fb9cb6d78123984cac0e4b7a2c1bf2d26eb01bc13bff69db71efbb729eaa0362b3c8e75a0e285801466f8e697b0aeb1220eb5dc3fb1d68654e
- SSDEEP
  
  6144:JtH+2vLvwU/4qwvwU/4qvvwevwU/4q+vwk/4q7:DHf
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2