0955b80c7ad3fd5920a7059bf76196eef00a6fbcbbd7ff39205c1d5c265bb42e | Triage

Sharing

General

Target

0955b80c7ad3fd5920a7059bf76196eef00a6fbcbbd7ff39205c1d5c265bb42e_NeikiAnalytics.exe
Size

232KB
Sample

240701-z4dl8stfqr
MD5

dfa34fa16203bab2b2698dc6251e1800
SHA1

076ebb9b8d0b261a004da3d2ece4c3d3c3084f5b
SHA256

0955b80c7ad3fd5920a7059bf76196eef00a6fbcbbd7ff39205c1d5c265bb42e
SHA512

98866abac63deb127023d9f9ecb08be3542c3637060287ac2fc1d40d8e4cbf58fda94b7af511f68d60b9d1b321c20f7f7b677f27b701608b81d027f244a13277
SSDEEP

3072:T8q2f9u0FUw7usluTXp6UF5wzec+tZOnU1/s5HH0AU/yRvS3u121TzlbNRfzPad8:Tp2f9u06w6s21L7/s50z/Wa3/PNlPX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0955b80c7ad3fd5920a7059bf76196eef00a6fbcbbd7ff39205c1d5c265bb42e_NeikiAnalytics.exe
- Size
  
  232KB
- MD5
  
  dfa34fa16203bab2b2698dc6251e1800
- SHA1
  
  076ebb9b8d0b261a004da3d2ece4c3d3c3084f5b
- SHA256
  
  0955b80c7ad3fd5920a7059bf76196eef00a6fbcbbd7ff39205c1d5c265bb42e
- SHA512
  
  98866abac63deb127023d9f9ecb08be3542c3637060287ac2fc1d40d8e4cbf58fda94b7af511f68d60b9d1b321c20f7f7b677f27b701608b81d027f244a13277
- SSDEEP
  
  3072:T8q2f9u0FUw7usluTXp6UF5wzec+tZOnU1/s5HH0AU/yRvS3u121TzlbNRfzPad8:Tp2f9u06w6s21L7/s50z/Wa3/PNlPX
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2