General
-
Target
5ee6196c1d9e6bea18a5565e339fede0_NeikiAnalytics.exe
-
Size
274KB
-
Sample
240523-afsc2sed44
-
MD5
5ee6196c1d9e6bea18a5565e339fede0
-
SHA1
c9042da06d12e86f085ee41e2e76483e5700bd9f
-
SHA256
5f0814965934168490dfb468b86a16b2bc0c0c167434b2b7a08e625cc96b36d6
-
SHA512
58927da743426a4469c7af32c522a43931a090b6862d48752e968e79bab8c1d9b824b933bccac703d8f99912b7e93a1ab59188f3ee9a9cedba4f64fdb675d164
-
SSDEEP
6144:OvEN2U+T6i5LirrllHy4HUcMQY66bThVcHL:QENN+T5xYrllrU7QY68Thq
Malware Config
Targets
-
-
Target
5ee6196c1d9e6bea18a5565e339fede0_NeikiAnalytics.exe
-
Size
274KB
-
MD5
5ee6196c1d9e6bea18a5565e339fede0
-
SHA1
c9042da06d12e86f085ee41e2e76483e5700bd9f
-
SHA256
5f0814965934168490dfb468b86a16b2bc0c0c167434b2b7a08e625cc96b36d6
-
SHA512
58927da743426a4469c7af32c522a43931a090b6862d48752e968e79bab8c1d9b824b933bccac703d8f99912b7e93a1ab59188f3ee9a9cedba4f64fdb675d164
-
SSDEEP
6144:OvEN2U+T6i5LirrllHy4HUcMQY66bThVcHL:QENN+T5xYrllrU7QY68Thq
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1