420895f02048ecf648ac15a571b60165b0dee678c626c5c244a53f119a5b7e7d | Triage

Sharing

General

Target

420895f02048ecf648ac15a571b60165b0dee678c626c5c244a53f119a5b7e7d_NeikiAnalytics.exe
Size

308KB
Sample

240701-jz19qszhqg
MD5

6ca5f9ef49d49a682f4cd4ca3e2d7550
SHA1

e447c40162166604488998680504e5f69e04c00c
SHA256

420895f02048ecf648ac15a571b60165b0dee678c626c5c244a53f119a5b7e7d
SHA512

26237b93874ed170023f1e445c9304a521dfc1dbaab3d9c9d02c6f5eaddb49284b665ed1ff01d9346be3ad38385b9567ae52b4ca1d2a5b6f18e0f01c09f4d046
SSDEEP

3072:BSCKIknNNynDrSUCmnfCm04AetXS+m0b+qSMJ6CereLjBP3mhg:EbIiszf04JXS+jLereLVmhg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  420895f02048ecf648ac15a571b60165b0dee678c626c5c244a53f119a5b7e7d_NeikiAnalytics.exe
- Size
  
  308KB
- MD5
  
  6ca5f9ef49d49a682f4cd4ca3e2d7550
- SHA1
  
  e447c40162166604488998680504e5f69e04c00c
- SHA256
  
  420895f02048ecf648ac15a571b60165b0dee678c626c5c244a53f119a5b7e7d
- SHA512
  
  26237b93874ed170023f1e445c9304a521dfc1dbaab3d9c9d02c6f5eaddb49284b665ed1ff01d9346be3ad38385b9567ae52b4ca1d2a5b6f18e0f01c09f4d046
- SSDEEP
  
  3072:BSCKIknNNynDrSUCmnfCm04AetXS+m0b+qSMJ6CereLjBP3mhg:EbIiszf04JXS+jLereLVmhg
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2