General
-
Target
1e5a7c90f8ef875b5e92744c487bcdc0_NeikiAnalytics.exe
-
Size
222KB
-
Sample
240604-b5tsvaha4z
-
MD5
1e5a7c90f8ef875b5e92744c487bcdc0
-
SHA1
72328cdb5582c7a4e2081fece670e3045875e7b5
-
SHA256
18ed275187c2a8bf4155cd558a5b8e5a86f0e752177b5e06523b3c32ede6fa7c
-
SHA512
fdf5c58955ac4aa0478a5f4aa54bd9ffdea478d28eba07c5ab7d34ddb467f70e8a124c64470a86da84e498c6091d65368d92fa5f87637437ce5985a39e7ec30e
-
SSDEEP
3072:psSYlMdU5Uj4o9hHbiJygCullUQN7gsBh1L1M:BdoUk8JmRleK771W
Behavioral task
behavioral1
Sample
1e5a7c90f8ef875b5e92744c487bcdc0_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1e5a7c90f8ef875b5e92744c487bcdc0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
1e5a7c90f8ef875b5e92744c487bcdc0_NeikiAnalytics.exe
-
Size
222KB
-
MD5
1e5a7c90f8ef875b5e92744c487bcdc0
-
SHA1
72328cdb5582c7a4e2081fece670e3045875e7b5
-
SHA256
18ed275187c2a8bf4155cd558a5b8e5a86f0e752177b5e06523b3c32ede6fa7c
-
SHA512
fdf5c58955ac4aa0478a5f4aa54bd9ffdea478d28eba07c5ab7d34ddb467f70e8a124c64470a86da84e498c6091d65368d92fa5f87637437ce5985a39e7ec30e
-
SSDEEP
3072:psSYlMdU5Uj4o9hHbiJygCullUQN7gsBh1L1M:BdoUk8JmRleK771W
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1