General
-
Target
8f364601601ab7f8f42b1585a9bd3ad0_NeikiAnalytics.exe
-
Size
481KB
-
Sample
240601-f5vglabd7t
-
MD5
8f364601601ab7f8f42b1585a9bd3ad0
-
SHA1
569564d674871cecb82583f5d781c0474500f08f
-
SHA256
7203c5f8119f045feeda39459dc48fb2861d8d07207300c5959297c5407caf9e
-
SHA512
db0fe520c0e09b8d6c5cd8493d4e300d303f630c1f00e5a2c71213cfd39af0a879a8af31129b4b3813a3e5cd38cfab9becc31fcf564877400337ba1c9b4c7c5e
-
SSDEEP
6144:pjFRiOcXH6XWD0w1tizmtnktLJ6znvxNcCI+1jDIlnJ9+1aTEPTnOK4JKElDnI:nRDc3yWDNU+YUznzNjElWaT07NQtDI
Static task
static1
Behavioral task
behavioral1
Sample
8f364601601ab7f8f42b1585a9bd3ad0_NeikiAnalytics.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
8f364601601ab7f8f42b1585a9bd3ad0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
8f364601601ab7f8f42b1585a9bd3ad0_NeikiAnalytics.exe
-
Size
481KB
-
MD5
8f364601601ab7f8f42b1585a9bd3ad0
-
SHA1
569564d674871cecb82583f5d781c0474500f08f
-
SHA256
7203c5f8119f045feeda39459dc48fb2861d8d07207300c5959297c5407caf9e
-
SHA512
db0fe520c0e09b8d6c5cd8493d4e300d303f630c1f00e5a2c71213cfd39af0a879a8af31129b4b3813a3e5cd38cfab9becc31fcf564877400337ba1c9b4c7c5e
-
SSDEEP
6144:pjFRiOcXH6XWD0w1tizmtnktLJ6znvxNcCI+1jDIlnJ9+1aTEPTnOK4JKElDnI:nRDc3yWDNU+YUznzNjElWaT07NQtDI
Score10/10-
Modifies firewall policy service
-
Adds policy Run key to start application
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
3Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
3Create or Modify System Process
1Windows Service
1