General
-
Target
5099e80365241c21cc2ac1c31709f270_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240530-qnnmtsaa7w
-
MD5
5099e80365241c21cc2ac1c31709f270
-
SHA1
08fcd5a47e6974abeed70e218ac5f6ba8710de6b
-
SHA256
804c0f95f83ce2e7ad127e90087cc4a65508c56c1bd5288ebe471f540a863a8c
-
SHA512
153f05b13a0a97a7c29d417ac064533ac2131153fdc1db7a67868b067a0650893660c685e6f70b6d91ab59ac221108280daac582347e7334b0b92182a123c4d1
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unl:zvEN2U+T6i5LirrllHy4HUcMQY66
Static task
static1
Behavioral task
behavioral1
Sample
5099e80365241c21cc2ac1c31709f270_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
5099e80365241c21cc2ac1c31709f270_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
5099e80365241c21cc2ac1c31709f270_NeikiAnalytics.exe
-
Size
206KB
-
MD5
5099e80365241c21cc2ac1c31709f270
-
SHA1
08fcd5a47e6974abeed70e218ac5f6ba8710de6b
-
SHA256
804c0f95f83ce2e7ad127e90087cc4a65508c56c1bd5288ebe471f540a863a8c
-
SHA512
153f05b13a0a97a7c29d417ac064533ac2131153fdc1db7a67868b067a0650893660c685e6f70b6d91ab59ac221108280daac582347e7334b0b92182a123c4d1
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unl:zvEN2U+T6i5LirrllHy4HUcMQY66
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1