General
-
Target
90d7f1e405c34f7ef9875f89aee95d60_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240601-g9gxqsdd97
-
MD5
90d7f1e405c34f7ef9875f89aee95d60
-
SHA1
cfb27a2455c7ef9b6097940066695e7c7aea3727
-
SHA256
74b74b2b840732090ea00f2673a324f857fe1c32a720131aecf22d79f59fa1e7
-
SHA512
cc64fff9eedb29f8f5d545f896534956c3690689a07c9e27b91f85c5261e4394bf848a59654f8ffa952df957451cd0ddb68ace90091a50df1009ff9ac9307816
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6uni:zvEN2U+T6i5LirrllHy4HUcMQY6L
Static task
static1
Behavioral task
behavioral1
Sample
90d7f1e405c34f7ef9875f89aee95d60_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
90d7f1e405c34f7ef9875f89aee95d60_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
90d7f1e405c34f7ef9875f89aee95d60_NeikiAnalytics.exe
-
Size
206KB
-
MD5
90d7f1e405c34f7ef9875f89aee95d60
-
SHA1
cfb27a2455c7ef9b6097940066695e7c7aea3727
-
SHA256
74b74b2b840732090ea00f2673a324f857fe1c32a720131aecf22d79f59fa1e7
-
SHA512
cc64fff9eedb29f8f5d545f896534956c3690689a07c9e27b91f85c5261e4394bf848a59654f8ffa952df957451cd0ddb68ace90091a50df1009ff9ac9307816
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6uni:zvEN2U+T6i5LirrllHy4HUcMQY6L
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1