General
-
Target
bca5a513451815c18bc12892116ec180_NeikiAnalytics
-
Size
148KB
-
Sample
240513-sjc2mscd65
-
MD5
bca5a513451815c18bc12892116ec180
-
SHA1
a7b976aaa9e581ba80f49fcb2ae03f2408ca8405
-
SHA256
48d587625d9afe85e3264eaf3863b5f5ff26c414bdb1b30bca374eebe48beba8
-
SHA512
b974a3bb7b817a2c703ab59db6c4cba506818da5319889b1ff903a1b2c18b10969d459228473a36569ab45da79ed427b0f1ebfa223d81b15832e692fee4c30ea
-
SSDEEP
1536:nrel3XWo2VxyMcCbncBVZWX5HzvCxGYCBbxTNyThXP2:rC3XWoixXDncBV4X5HzKxGYCzTNyTJ2
Malware Config
Targets
-
-
Target
bca5a513451815c18bc12892116ec180_NeikiAnalytics
-
Size
148KB
-
MD5
bca5a513451815c18bc12892116ec180
-
SHA1
a7b976aaa9e581ba80f49fcb2ae03f2408ca8405
-
SHA256
48d587625d9afe85e3264eaf3863b5f5ff26c414bdb1b30bca374eebe48beba8
-
SHA512
b974a3bb7b817a2c703ab59db6c4cba506818da5319889b1ff903a1b2c18b10969d459228473a36569ab45da79ed427b0f1ebfa223d81b15832e692fee4c30ea
-
SSDEEP
1536:nrel3XWo2VxyMcCbncBVZWX5HzvCxGYCBbxTNyThXP2:rC3XWoixXDncBV4X5HzKxGYCzTNyTJ2
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Drops file in Drivers directory
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1