General

  • Target

    9fae26e75d4673cae8ea37d9fcc84880_NeikiAnalytics.exe

  • Size

    91KB

  • Sample

    240603-hxm4nagg49

  • MD5

    9fae26e75d4673cae8ea37d9fcc84880

  • SHA1

    8806715d00e25cb15fffa57b2fcbcccb5146803b

  • SHA256

    63bf02b15f66df17a087e4f0baef3be378e165692ac685f4889d59f920ee3a35

  • SHA512

    55207da2630f8728cffb524ab6b833b2e1a2d7f99b4b69b41c042bcf35d9a2e0cf851e0492ceb56687d04659b4b012d5b3cc1d5dc9d6a32dfe015eedd14268ea

  • SSDEEP

    1536:FAwEmBGz1lNNqDaG0Poxhlzm2TiAwEmBGz1lNNqDaG0PoxhlzmY:FGmUXNQDaG0A82TiGmUXNQDaG0A8Y

Score
10/10

Malware Config

Targets

    • Target

      9fae26e75d4673cae8ea37d9fcc84880_NeikiAnalytics.exe

    • Size

      91KB

    • MD5

      9fae26e75d4673cae8ea37d9fcc84880

    • SHA1

      8806715d00e25cb15fffa57b2fcbcccb5146803b

    • SHA256

      63bf02b15f66df17a087e4f0baef3be378e165692ac685f4889d59f920ee3a35

    • SHA512

      55207da2630f8728cffb524ab6b833b2e1a2d7f99b4b69b41c042bcf35d9a2e0cf851e0492ceb56687d04659b4b012d5b3cc1d5dc9d6a32dfe015eedd14268ea

    • SSDEEP

      1536:FAwEmBGz1lNNqDaG0Poxhlzm2TiAwEmBGz1lNNqDaG0PoxhlzmY:FGmUXNQDaG0A82TiGmUXNQDaG0A8Y

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Disables RegEdit via registry modification

    • Disables use of System Restore points

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks