071ab8d1c5b559edf87c58bb7a69317286009b51668139bbc5b45537a39cdf95 | Triage

Sharing

General

Target

071ab8d1c5b559edf87c58bb7a69317286009b51668139bbc5b45537a39cdf95_NeikiAnalytics.exe
Size

324KB
Sample

240701-zryfwatajn
MD5

2590e19c165c63315ebfaf9876e045b0
SHA1

be0a940bc0b7707dca4af078c897223bfcf03cc0
SHA256

071ab8d1c5b559edf87c58bb7a69317286009b51668139bbc5b45537a39cdf95
SHA512

d16613450fff07fe15c5e308b2ffb1a3d969ccf8a8cb91818df209d8ed90f4ffc23a423ad7005420a04505ef8e76a94b36d754f6c856ac39e48ca719f7701fca
SSDEEP

6144:OLo0745B3Sizd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:O0jp5IFy5BcVPINRFYpfZvTmAWqeMf3O

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  071ab8d1c5b559edf87c58bb7a69317286009b51668139bbc5b45537a39cdf95_NeikiAnalytics.exe
- Size
  
  324KB
- MD5
  
  2590e19c165c63315ebfaf9876e045b0
- SHA1
  
  be0a940bc0b7707dca4af078c897223bfcf03cc0
- SHA256
  
  071ab8d1c5b559edf87c58bb7a69317286009b51668139bbc5b45537a39cdf95
- SHA512
  
  d16613450fff07fe15c5e308b2ffb1a3d969ccf8a8cb91818df209d8ed90f4ffc23a423ad7005420a04505ef8e76a94b36d754f6c856ac39e48ca719f7701fca
- SSDEEP
  
  6144:OLo0745B3Sizd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:O0jp5IFy5BcVPINRFYpfZvTmAWqeMf3O
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2