General

  • Target

    8b48861bd16212e6235e2c8a949cde90_NeikiAnalytics.exe

  • Size

    211KB

  • Sample

    240601-dqefqafh3y

  • MD5

    8b48861bd16212e6235e2c8a949cde90

  • SHA1

    045666cdc2db443b0ea9494bb92259b813ea49b7

  • SHA256

    e03348806dc2cde36eb0a450037a91e1954adf4a9767f3a3dd938c66e85ecaaf

  • SHA512

    4dfec06a133106db38bd2d8fc2f410574924b67322bd6da86c51e3fe68c62bf923508edf3def75221399fb0c8388a38ebf0697c5d8d5ecacaf366cb35302bfc4

  • SSDEEP

    3072:JD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqON:Jh8cBzHLRMpZ4d1ZN

Score
10/10

Malware Config

Targets

    • Target

      8b48861bd16212e6235e2c8a949cde90_NeikiAnalytics.exe

    • Size

      211KB

    • MD5

      8b48861bd16212e6235e2c8a949cde90

    • SHA1

      045666cdc2db443b0ea9494bb92259b813ea49b7

    • SHA256

      e03348806dc2cde36eb0a450037a91e1954adf4a9767f3a3dd938c66e85ecaaf

    • SHA512

      4dfec06a133106db38bd2d8fc2f410574924b67322bd6da86c51e3fe68c62bf923508edf3def75221399fb0c8388a38ebf0697c5d8d5ecacaf366cb35302bfc4

    • SSDEEP

      3072:JD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqON:Jh8cBzHLRMpZ4d1ZN

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks