General
-
Target
68b953ae9c4603fa8558c997bed471c0_NeikiAnalytics.exe
-
Size
211KB
-
Sample
240530-qzcdyabf47
-
MD5
68b953ae9c4603fa8558c997bed471c0
-
SHA1
4aa55e8e1a2a9a5d570b5b68c1637fa5cf992bb0
-
SHA256
3716930830c4f1a396041113599210b2fc4a6d23c9ec62da84faf332ec01b396
-
SHA512
85c8fee6784735d5d391a31c63dccbf10736bb2b492557e2bcfc045021d54d552d0d6c5b87afc1b4906326af0a53b906ae4041db9cc43a15e0568725531505f8
-
SSDEEP
3072:WD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqOD:Wh8cBzHLRMpZ4d1ZD
Malware Config
Targets
-
-
Target
68b953ae9c4603fa8558c997bed471c0_NeikiAnalytics.exe
-
Size
211KB
-
MD5
68b953ae9c4603fa8558c997bed471c0
-
SHA1
4aa55e8e1a2a9a5d570b5b68c1637fa5cf992bb0
-
SHA256
3716930830c4f1a396041113599210b2fc4a6d23c9ec62da84faf332ec01b396
-
SHA512
85c8fee6784735d5d391a31c63dccbf10736bb2b492557e2bcfc045021d54d552d0d6c5b87afc1b4906326af0a53b906ae4041db9cc43a15e0568725531505f8
-
SSDEEP
3072:WD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqOD:Wh8cBzHLRMpZ4d1ZD
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1