General

  • Target

    1e5a7c90f8ef875b5e92744c487bcdc0_NeikiAnalytics.exe

  • Size

    222KB

  • Sample

    240604-b5tsvaha4z

  • MD5

    1e5a7c90f8ef875b5e92744c487bcdc0

  • SHA1

    72328cdb5582c7a4e2081fece670e3045875e7b5

  • SHA256

    18ed275187c2a8bf4155cd558a5b8e5a86f0e752177b5e06523b3c32ede6fa7c

  • SHA512

    fdf5c58955ac4aa0478a5f4aa54bd9ffdea478d28eba07c5ab7d34ddb467f70e8a124c64470a86da84e498c6091d65368d92fa5f87637437ce5985a39e7ec30e

  • SSDEEP

    3072:psSYlMdU5Uj4o9hHbiJygCullUQN7gsBh1L1M:BdoUk8JmRleK771W

Score
10/10

Malware Config

Targets

    • Target

      1e5a7c90f8ef875b5e92744c487bcdc0_NeikiAnalytics.exe

    • Size

      222KB

    • MD5

      1e5a7c90f8ef875b5e92744c487bcdc0

    • SHA1

      72328cdb5582c7a4e2081fece670e3045875e7b5

    • SHA256

      18ed275187c2a8bf4155cd558a5b8e5a86f0e752177b5e06523b3c32ede6fa7c

    • SHA512

      fdf5c58955ac4aa0478a5f4aa54bd9ffdea478d28eba07c5ab7d34ddb467f70e8a124c64470a86da84e498c6091d65368d92fa5f87637437ce5985a39e7ec30e

    • SSDEEP

      3072:psSYlMdU5Uj4o9hHbiJygCullUQN7gsBh1L1M:BdoUk8JmRleK771W

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks