c693c4a771d553aa423d864e4e45e63bbc66946c4f4a6270af4705abded77f9c | Triage

Sharing

General

Target

d9d9cb1fbfb437799808ead1dff841a0_NeikiAnalytics
Size

6.1MB
Sample

240510-n62ajadb2y
MD5

d9d9cb1fbfb437799808ead1dff841a0
SHA1

84dde02c10436da90e7422c0f2c90f5ecc2d58c4
SHA256

c693c4a771d553aa423d864e4e45e63bbc66946c4f4a6270af4705abded77f9c
SHA512

eb429d2fecc439da460fb715badfaab3373a5235914a183ff4aa5baffbb80b5723d2fe2ebe603937fa6afbd77c607dcbde9da1624bd074632e01905824d1c39e
SSDEEP

196608:A6q0HkQgN1DmfJLO03/Vnaiq2L8dET6WBse0aUCeVMRmLnP9b:A6jCKLO03ZFn846WBsnaiVMRYnN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d9d9cb1fbfb437799808ead1dff841a0_NeikiAnalytics
- Size
  
  6.1MB
- MD5
  
  d9d9cb1fbfb437799808ead1dff841a0
- SHA1
  
  84dde02c10436da90e7422c0f2c90f5ecc2d58c4
- SHA256
  
  c693c4a771d553aa423d864e4e45e63bbc66946c4f4a6270af4705abded77f9c
- SHA512
  
  eb429d2fecc439da460fb715badfaab3373a5235914a183ff4aa5baffbb80b5723d2fe2ebe603937fa6afbd77c607dcbde9da1624bd074632e01905824d1c39e
- SSDEEP
  
  196608:A6q0HkQgN1DmfJLO03/Vnaiq2L8dET6WBse0aUCeVMRmLnP9b:A6jCKLO03ZFn846WBsnaiVMRYnN
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2