General
-
Target
bee799df251f6709c25e49f2a338acb0_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240520-gm5ehsfb3z
-
MD5
bee799df251f6709c25e49f2a338acb0
-
SHA1
5bdd2dda5dd8f345679071aca3e9059bbcce714f
-
SHA256
eaecc2b5ccd4458bc9b2a93bf0b8b1e6bf735c31004771fc1af0717964d856b6
-
SHA512
6a68c4356baa3e63926007565d4ac35fb3dbd9ed047e33341858a0bc02cf26bda115e2ba18180bc6c85d186144fe7b4fa46f3c16869ed90be461030556a72e94
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6un0MQ:zvEN2U+T6i5LirrllHy4HUcMQY6rMQ
Malware Config
Targets
-
-
Target
bee799df251f6709c25e49f2a338acb0_NeikiAnalytics.exe
-
Size
206KB
-
MD5
bee799df251f6709c25e49f2a338acb0
-
SHA1
5bdd2dda5dd8f345679071aca3e9059bbcce714f
-
SHA256
eaecc2b5ccd4458bc9b2a93bf0b8b1e6bf735c31004771fc1af0717964d856b6
-
SHA512
6a68c4356baa3e63926007565d4ac35fb3dbd9ed047e33341858a0bc02cf26bda115e2ba18180bc6c85d186144fe7b4fa46f3c16869ed90be461030556a72e94
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6un0MQ:zvEN2U+T6i5LirrllHy4HUcMQY6rMQ
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1