053d1c5ae767f9ea1c14b08c547ec8d665750e8c14993dc1491f12fddc14bcc7 | Triage

Sharing

General

Target

fd7ee0e04116c9995dc33463c9df9d90_NeikiAnalytics.exe
Size

206KB
Sample

240522-ysy85aee5w
MD5

fd7ee0e04116c9995dc33463c9df9d90
SHA1

09bf4e2def0a4410b8827a245050b477a357d369
SHA256

053d1c5ae767f9ea1c14b08c547ec8d665750e8c14993dc1491f12fddc14bcc7
SHA512

a33244576c53c977198884131735a958cb684136edecad0bd2c5d8951acacc3d146f95582f83d666f8823c456796f01a7a1a93207888e58128b7c06c0d328cc8
SSDEEP

6144:f+EqFQ9A9ty5bhJcrs0MurPw/c4hd/B/coyXT3nOGX6T+:f+U9qyFhJy56d/eoyXjn9W+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  fd7ee0e04116c9995dc33463c9df9d90_NeikiAnalytics.exe
- Size
  
  206KB
- MD5
  
  fd7ee0e04116c9995dc33463c9df9d90
- SHA1
  
  09bf4e2def0a4410b8827a245050b477a357d369
- SHA256
  
  053d1c5ae767f9ea1c14b08c547ec8d665750e8c14993dc1491f12fddc14bcc7
- SHA512
  
  a33244576c53c977198884131735a958cb684136edecad0bd2c5d8951acacc3d146f95582f83d666f8823c456796f01a7a1a93207888e58128b7c06c0d328cc8
- SSDEEP
  
  6144:f+EqFQ9A9ty5bhJcrs0MurPw/c4hd/B/coyXT3nOGX6T+:f+U9qyFhJy56d/eoyXjn9W+
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies WinLogon
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2