General
-
Target
9fe0e96e742d1a26cde74c5ebce8ff40_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240603-h2qeksgh74
-
MD5
9fe0e96e742d1a26cde74c5ebce8ff40
-
SHA1
e706f2f6ca8aab8616ad8c8b2634f082fcd0ae38
-
SHA256
74c300d0483fef1085cd418cbc30b840b18b820569e4bac35a3b6398db290615
-
SHA512
4009fd917cd3a14bcdf8b4f440da0182f6c66d87039c49f33db552c431d96d5c96c55c3bc350fe98b50e01b4ab52d10c83bcc85b93b04d692b25a8958f286771
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unAAAAAAAAAAAAAAAAAAAAAAX:zvEN2U+T6i5LirrllHy4HUcMQY6G
Static task
static1
Behavioral task
behavioral1
Sample
9fe0e96e742d1a26cde74c5ebce8ff40_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
9fe0e96e742d1a26cde74c5ebce8ff40_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
9fe0e96e742d1a26cde74c5ebce8ff40_NeikiAnalytics.exe
-
Size
206KB
-
MD5
9fe0e96e742d1a26cde74c5ebce8ff40
-
SHA1
e706f2f6ca8aab8616ad8c8b2634f082fcd0ae38
-
SHA256
74c300d0483fef1085cd418cbc30b840b18b820569e4bac35a3b6398db290615
-
SHA512
4009fd917cd3a14bcdf8b4f440da0182f6c66d87039c49f33db552c431d96d5c96c55c3bc350fe98b50e01b4ab52d10c83bcc85b93b04d692b25a8958f286771
-
SSDEEP
3072:zvEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unAAAAAAAAAAAAAAAAAAAAAAX:zvEN2U+T6i5LirrllHy4HUcMQY6G
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1