General
-
Target
1c9fd422c5d6129d8196a5865b88c060_NeikiAnalytics.exe
-
Size
51KB
-
Sample
240602-bxph6aeh58
-
MD5
1c9fd422c5d6129d8196a5865b88c060
-
SHA1
7655df27ace92caac2ebd69c05f55b6461d275c3
-
SHA256
a400f4718938e4ed01deaffb0506375b7474eee79269ab35baa0cfa47e38670f
-
SHA512
32e4e600521c9e0a1526afd68e3387b9e8cc9695999920bcf77a276af4f0ebe35b34a58e0aba2835bc5b923d103817eab356fbec9f8fd0bc6fff3466c0f371a2
-
SSDEEP
1536:nNJb/HkwoLe29UjQ4wqQOLIMVnS36UUUUUUUUUUUUUUUUUUUUUUUh:b+LKSOLIMdgL
Behavioral task
behavioral1
Sample
1c9fd422c5d6129d8196a5865b88c060_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
1c9fd422c5d6129d8196a5865b88c060_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
1c9fd422c5d6129d8196a5865b88c060_NeikiAnalytics.exe
-
Size
51KB
-
MD5
1c9fd422c5d6129d8196a5865b88c060
-
SHA1
7655df27ace92caac2ebd69c05f55b6461d275c3
-
SHA256
a400f4718938e4ed01deaffb0506375b7474eee79269ab35baa0cfa47e38670f
-
SHA512
32e4e600521c9e0a1526afd68e3387b9e8cc9695999920bcf77a276af4f0ebe35b34a58e0aba2835bc5b923d103817eab356fbec9f8fd0bc6fff3466c0f371a2
-
SSDEEP
1536:nNJb/HkwoLe29UjQ4wqQOLIMVnS36UUUUUUUUUUUUUUUUUUUUUUUh:b+LKSOLIMdgL
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Drops file in Drivers directory
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1