General
-
Target
67ef27eaa7699822a686f8e37c63a1a0_NeikiAnalytics.exe
-
Size
71KB
-
Sample
240523-bctmdaff5s
-
MD5
67ef27eaa7699822a686f8e37c63a1a0
-
SHA1
de66db9a4f3cf5b11d6dcbd81a8852404f80c81d
-
SHA256
dc04c2065da561945a3b2986f24f0bc26ec4c750fd44fc9b4c4ffe561435f2d0
-
SHA512
0c6307e74dad06684edcfb71c81c5a2db1b260919dcf6bba745ff416f92756b39b437d2a107ffd081f38799af86b728030ea3a0d49f71137f0d5fd80ae2068d3
-
SSDEEP
1536:EFrmh0HgB3LKrL9AcnQFMc9zwR6i+BXvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvx:ec0HgB3LCqZMYXBZ
Malware Config
Targets
-
-
Target
67ef27eaa7699822a686f8e37c63a1a0_NeikiAnalytics.exe
-
Size
71KB
-
MD5
67ef27eaa7699822a686f8e37c63a1a0
-
SHA1
de66db9a4f3cf5b11d6dcbd81a8852404f80c81d
-
SHA256
dc04c2065da561945a3b2986f24f0bc26ec4c750fd44fc9b4c4ffe561435f2d0
-
SHA512
0c6307e74dad06684edcfb71c81c5a2db1b260919dcf6bba745ff416f92756b39b437d2a107ffd081f38799af86b728030ea3a0d49f71137f0d5fd80ae2068d3
-
SSDEEP
1536:EFrmh0HgB3LKrL9AcnQFMc9zwR6i+BXvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvx:ec0HgB3LCqZMYXBZ
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1