General

  • Target

    988bc6e2451289bb05bedf193f8e1420_NeikiAnalytics.exe

  • Size

    51KB

  • Sample

    240603-c5yx8sgd5z

  • MD5

    988bc6e2451289bb05bedf193f8e1420

  • SHA1

    7ae834a0b5dbec3edb0bcf07698514106b0eb405

  • SHA256

    c8fcaa6a35e938e574494e17f06347b8750f794c8ef687b4ffd6798b962ce931

  • SHA512

    23395010ff281706675fadf33f603c9b2918beeb9ede68e08557c4d06ca662479ef291326d0e9615daddd092a94db69aa14e4d017e8f248aa046c5e619831f18

  • SSDEEP

    768:nNAGAkIo/juokwoL7627d9rIiClJAxiFkJT22euOiya6lHOYxY0x0KS3MXXXXXXu:nNJb/HkwoLe29UjQ4wqQOLIMVnS3V

Score
10/10

Malware Config

Targets

    • Target

      988bc6e2451289bb05bedf193f8e1420_NeikiAnalytics.exe

    • Size

      51KB

    • MD5

      988bc6e2451289bb05bedf193f8e1420

    • SHA1

      7ae834a0b5dbec3edb0bcf07698514106b0eb405

    • SHA256

      c8fcaa6a35e938e574494e17f06347b8750f794c8ef687b4ffd6798b962ce931

    • SHA512

      23395010ff281706675fadf33f603c9b2918beeb9ede68e08557c4d06ca662479ef291326d0e9615daddd092a94db69aa14e4d017e8f248aa046c5e619831f18

    • SSDEEP

      768:nNAGAkIo/juokwoL7627d9rIiClJAxiFkJT22euOiya6lHOYxY0x0KS3MXXXXXXu:nNJb/HkwoLe29UjQ4wqQOLIMVnS3V

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks