814ffaf1e3a33e2a9d96af59cb386baf994f548094b529961fd87b282d077986 | Triage

Sharing

General

Target

99f386d95a0278bb887637ddf9110630_NeikiAnalytics.exe
Size

217KB
Sample

240520-dknr7shd6v
MD5

99f386d95a0278bb887637ddf9110630
SHA1

46f0bcfc86b853a320065fd09642a7e077d6d837
SHA256

814ffaf1e3a33e2a9d96af59cb386baf994f548094b529961fd87b282d077986
SHA512

32b607e7bc1ab707787d29241c06f6748589f9db3152efd9a6c18117246016a82df94e85a8ef7037d03d812043a3328ccf9a9cf905b2b782ff1a1fd9e79444dc
SSDEEP

6144:PnyiqVQBf0EaIp8fkTJJsK1eEzEB1XjrkXb:gEdp8csKpE7XX

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  99f386d95a0278bb887637ddf9110630_NeikiAnalytics.exe
- Size
  
  217KB
- MD5
  
  99f386d95a0278bb887637ddf9110630
- SHA1
  
  46f0bcfc86b853a320065fd09642a7e077d6d837
- SHA256
  
  814ffaf1e3a33e2a9d96af59cb386baf994f548094b529961fd87b282d077986
- SHA512
  
  32b607e7bc1ab707787d29241c06f6748589f9db3152efd9a6c18117246016a82df94e85a8ef7037d03d812043a3328ccf9a9cf905b2b782ff1a1fd9e79444dc
- SSDEEP
  
  6144:PnyiqVQBf0EaIp8fkTJJsK1eEzEB1XjrkXb:gEdp8csKpE7XX
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2