General

  • Target

    8f1cb7f2980c46214d2f3172da1a16d0_NeikiAnalytics.exe

  • Size

    91KB

  • Sample

    240601-f4ckdsbd2z

  • MD5

    8f1cb7f2980c46214d2f3172da1a16d0

  • SHA1

    b3030c8a2442f19dc5ff9acc0afefdc65d15683e

  • SHA256

    9ccd62dcf31aba76bedade8b90685fd028f56899e5607821c123572882fd2495

  • SHA512

    a3e23d8012b7c393a09fe8537574010b953d67608f630443feccf8c9c2663ea165c2b66438a96096f3dd14e786a801459d814bf4943c8a6dc79ee4d5fb1bf0ea

  • SSDEEP

    1536:FAwEmBGz1lNNqDaG0PoxhlzmMAwEmBGz1lNNqDaG0Poxhlzm+:FGmUXNQDaG0A8MGmUXNQDaG0A8+

Score
10/10

Malware Config

Targets

    • Target

      8f1cb7f2980c46214d2f3172da1a16d0_NeikiAnalytics.exe

    • Size

      91KB

    • MD5

      8f1cb7f2980c46214d2f3172da1a16d0

    • SHA1

      b3030c8a2442f19dc5ff9acc0afefdc65d15683e

    • SHA256

      9ccd62dcf31aba76bedade8b90685fd028f56899e5607821c123572882fd2495

    • SHA512

      a3e23d8012b7c393a09fe8537574010b953d67608f630443feccf8c9c2663ea165c2b66438a96096f3dd14e786a801459d814bf4943c8a6dc79ee4d5fb1bf0ea

    • SSDEEP

      1536:FAwEmBGz1lNNqDaG0PoxhlzmMAwEmBGz1lNNqDaG0Poxhlzm+:FGmUXNQDaG0A8MGmUXNQDaG0A8+

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Disables RegEdit via registry modification

    • Disables use of System Restore points

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks