General

  • Target

    8a9c1f06ef61bc056a8650b0a03f1140_NeikiAnalytics.exe

  • Size

    211KB

  • Sample

    240601-da4qnsfc61

  • MD5

    8a9c1f06ef61bc056a8650b0a03f1140

  • SHA1

    e706a1843d630d35de7cce23491d0e8fc396f950

  • SHA256

    f3aac4809003e6da70c19e6180d66e638ddf5e13f351744e5d674efbd853ac0e

  • SHA512

    9bc319e4a77d6f30b1c761cbeee5511f4f1cb4231ef102d824c41c828efc07e10bae28dda46998810c20a36480355563fc836c2caea6f7913af2f2cf30fbf4fa

  • SSDEEP

    3072:JD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqOI:Jh8cBzHLRMpZ4d1ZI

Score
10/10

Malware Config

Targets

    • Target

      8a9c1f06ef61bc056a8650b0a03f1140_NeikiAnalytics.exe

    • Size

      211KB

    • MD5

      8a9c1f06ef61bc056a8650b0a03f1140

    • SHA1

      e706a1843d630d35de7cce23491d0e8fc396f950

    • SHA256

      f3aac4809003e6da70c19e6180d66e638ddf5e13f351744e5d674efbd853ac0e

    • SHA512

      9bc319e4a77d6f30b1c761cbeee5511f4f1cb4231ef102d824c41c828efc07e10bae28dda46998810c20a36480355563fc836c2caea6f7913af2f2cf30fbf4fa

    • SSDEEP

      3072:JD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqOI:Jh8cBzHLRMpZ4d1ZI

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks