d01f04bbca0f2e0683fcab5da5a9face7f386ef901bce65e1b0ea2753da20562 | Triage

Sharing

General

Target

45f4e9b11a8de9abfd50adb1abff1170_NeikiAnalytics
Size

75KB
Sample

240515-2a63ssfd37
MD5

45f4e9b11a8de9abfd50adb1abff1170
SHA1

a5b5fe9c91323bdee8012a0590aabd8cdd8a8566
SHA256

d01f04bbca0f2e0683fcab5da5a9face7f386ef901bce65e1b0ea2753da20562
SHA512

f2869e1e5b967ffb7198153bd232aa182fcaeefc4e14da46001f19cc7473f2fc7af2919feb14aaf504b8a54e4fe28c9e62dc4beab7dea647b8cae6cd602d2434
SSDEEP

1536:IaiqH1s+kCtrA2UMT0mTFibDKa1XohEBRKWXNMfBOI:p1B31bdBob2QXoCgKN+Bf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  45f4e9b11a8de9abfd50adb1abff1170_NeikiAnalytics
- Size
  
  75KB
- MD5
  
  45f4e9b11a8de9abfd50adb1abff1170
- SHA1
  
  a5b5fe9c91323bdee8012a0590aabd8cdd8a8566
- SHA256
  
  d01f04bbca0f2e0683fcab5da5a9face7f386ef901bce65e1b0ea2753da20562
- SHA512
  
  f2869e1e5b967ffb7198153bd232aa182fcaeefc4e14da46001f19cc7473f2fc7af2919feb14aaf504b8a54e4fe28c9e62dc4beab7dea647b8cae6cd602d2434
- SSDEEP
  
  1536:IaiqH1s+kCtrA2UMT0mTFibDKa1XohEBRKWXNMfBOI:p1B31bdBob2QXoCgKN+Bf
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2