e4247f68fc3df6054421de7cfd68e2805eb1fca89ecdc8953149eea82c2afd80 | Triage

Sharing

General

Target

45c31bef2b57559db7f4234e644fd700_NeikiAnalytics
Size

206KB
Sample

240509-qpca7aef58
MD5

45c31bef2b57559db7f4234e644fd700
SHA1

524f7f37a01019512c0517400a55d9dc65a51288
SHA256

e4247f68fc3df6054421de7cfd68e2805eb1fca89ecdc8953149eea82c2afd80
SHA512

b35c650a3d016b36b6dd821530d604220f649f41fe359e7233488b9ea0eec39898894fbecaf41b509ca7881625ffd9b1f6692e2a2db15d6f64944d0067d314bd
SSDEEP

6144:j+EqFQ9A9ty5bhJcrs0MurPw/c4hd/B/coyXT3nOGX6T+:j+U9qyFhJy56d/eoyXjn9W+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  45c31bef2b57559db7f4234e644fd700_NeikiAnalytics
- Size
  
  206KB
- MD5
  
  45c31bef2b57559db7f4234e644fd700
- SHA1
  
  524f7f37a01019512c0517400a55d9dc65a51288
- SHA256
  
  e4247f68fc3df6054421de7cfd68e2805eb1fca89ecdc8953149eea82c2afd80
- SHA512
  
  b35c650a3d016b36b6dd821530d604220f649f41fe359e7233488b9ea0eec39898894fbecaf41b509ca7881625ffd9b1f6692e2a2db15d6f64944d0067d314bd
- SSDEEP
  
  6144:j+EqFQ9A9ty5bhJcrs0MurPw/c4hd/B/coyXT3nOGX6T+:j+U9qyFhJy56d/eoyXjn9W+
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2