General

  • Target

    8ae2e769d37366b32601b2ff5de6f1c0_NeikiAnalytics.exe

  • Size

    314KB

  • Sample

    240601-df3essfe4y

  • MD5

    8ae2e769d37366b32601b2ff5de6f1c0

  • SHA1

    5b1f211dd56551fdc9f6c76e3ced3fe3047cb0dd

  • SHA256

    f3ed6c8ece275a335b81ae35864e962ff372bba31ff6849d9047791efb8e6fac

  • SHA512

    7ab4d7d19b73b166827830e79f7df3cdf492e9516874f08e0c0b098695c2addd0ced36a260f9bbb88cb0ec77c346421c31b584b743d99dbee6e7399affe5dba6

  • SSDEEP

    3072:7sgCullUQN7gsBh1LLQikygCullUQN7gsBh1L1/:7LleK771Q/RleK771V

Score
10/10

Malware Config

Targets

    • Target

      8ae2e769d37366b32601b2ff5de6f1c0_NeikiAnalytics.exe

    • Size

      314KB

    • MD5

      8ae2e769d37366b32601b2ff5de6f1c0

    • SHA1

      5b1f211dd56551fdc9f6c76e3ced3fe3047cb0dd

    • SHA256

      f3ed6c8ece275a335b81ae35864e962ff372bba31ff6849d9047791efb8e6fac

    • SHA512

      7ab4d7d19b73b166827830e79f7df3cdf492e9516874f08e0c0b098695c2addd0ced36a260f9bbb88cb0ec77c346421c31b584b743d99dbee6e7399affe5dba6

    • SSDEEP

      3072:7sgCullUQN7gsBh1LLQikygCullUQN7gsBh1L1/:7LleK771Q/RleK771V

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks