General

  • Target

    8ef6737a80fe08c103c37c06d5571610_NeikiAnalytics.exe

  • Size

    211KB

  • Sample

    240601-f1axdsbb8s

  • MD5

    8ef6737a80fe08c103c37c06d5571610

  • SHA1

    e639c153a969209d671b6f1dcfc1021e4f5675d3

  • SHA256

    3ae5ca48a78dd1839227f5ed8dcb1dc50152d4acf2504463954d342d9ade2f94

  • SHA512

    70ab50e8b7e6d907bb6922bcf7c1a77bd1f7149a992a6567b1cab2a89b3694fb79b648721b431465b85152f0c3c636882799042823b1c75c7f5d3406ee215ec3

  • SSDEEP

    3072:JD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqOe:Jh8cBzHLRMpZ4d1Ze

Score
10/10

Malware Config

Targets

    • Target

      8ef6737a80fe08c103c37c06d5571610_NeikiAnalytics.exe

    • Size

      211KB

    • MD5

      8ef6737a80fe08c103c37c06d5571610

    • SHA1

      e639c153a969209d671b6f1dcfc1021e4f5675d3

    • SHA256

      3ae5ca48a78dd1839227f5ed8dcb1dc50152d4acf2504463954d342d9ade2f94

    • SHA512

      70ab50e8b7e6d907bb6922bcf7c1a77bd1f7149a992a6567b1cab2a89b3694fb79b648721b431465b85152f0c3c636882799042823b1c75c7f5d3406ee215ec3

    • SSDEEP

      3072:JD6Xtx68yygRBE52mxkEOHLRMpZ4deth8PEAjAfIbAYGPhz6sPJBInxZqOe:Jh8cBzHLRMpZ4d1Ze

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks