General

  • Target

    9f98944de71b5f537af9847bb742b9c0_NeikiAnalytics.exe

  • Size

    91KB

  • Sample

    240603-hv5wpagg36

  • MD5

    9f98944de71b5f537af9847bb742b9c0

  • SHA1

    f99709ac50028117d51d72465dcd9588de266deb

  • SHA256

    ed9b1e6a02326d33854977fe55757f0e6b0540347d5cb7d718925d2e4a5e2587

  • SHA512

    a2bfe5af0bb9a19bd747182f78f7ca7168a8bef198245077a206026bb06096e48b690eaf659cf938932a74fa01410e9fd467f6d4c2694a738a9194908c6dc55d

  • SSDEEP

    1536:zAwEmBZ04faWmtN4nic+6GcAwEmBZ04faWmtN4nic+6GL:zGms4Eton0cGms4Eton0L

Score
10/10

Malware Config

Targets

    • Target

      9f98944de71b5f537af9847bb742b9c0_NeikiAnalytics.exe

    • Size

      91KB

    • MD5

      9f98944de71b5f537af9847bb742b9c0

    • SHA1

      f99709ac50028117d51d72465dcd9588de266deb

    • SHA256

      ed9b1e6a02326d33854977fe55757f0e6b0540347d5cb7d718925d2e4a5e2587

    • SHA512

      a2bfe5af0bb9a19bd747182f78f7ca7168a8bef198245077a206026bb06096e48b690eaf659cf938932a74fa01410e9fd467f6d4c2694a738a9194908c6dc55d

    • SSDEEP

      1536:zAwEmBZ04faWmtN4nic+6GcAwEmBZ04faWmtN4nic+6GL:zGms4Eton0cGms4Eton0L

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Disables RegEdit via registry modification

    • Disables use of System Restore points

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks