General

  • Target

    1f99e07800ea0364bc736eaafde935d0_NeikiAnalytics.exe

  • Size

    274KB

  • Sample

    240604-cev4nahe5t

  • MD5

    1f99e07800ea0364bc736eaafde935d0

  • SHA1

    202e94b7ccd07e726cd7b1a40f054d5bf98a84e3

  • SHA256

    9872be18d3d254008c54332d4cd394ad156c47949b2422377dd2d9c527d61868

  • SHA512

    73f5f1eceb244fc4105e7c3c2e0cf0cef0c7679c22bf0efe5061c5c9fd6376157f68829f5d08666b60a23e560dbf2111bf12df777ee2dd8d819824a31d416f34

  • SSDEEP

    3072:Gbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyA5:Gbl5RKgOGqml80FrgTRHGvJI08iY7

Score
10/10

Malware Config

Targets

    • Target

      1f99e07800ea0364bc736eaafde935d0_NeikiAnalytics.exe

    • Size

      274KB

    • MD5

      1f99e07800ea0364bc736eaafde935d0

    • SHA1

      202e94b7ccd07e726cd7b1a40f054d5bf98a84e3

    • SHA256

      9872be18d3d254008c54332d4cd394ad156c47949b2422377dd2d9c527d61868

    • SHA512

      73f5f1eceb244fc4105e7c3c2e0cf0cef0c7679c22bf0efe5061c5c9fd6376157f68829f5d08666b60a23e560dbf2111bf12df777ee2dd8d819824a31d416f34

    • SSDEEP

      3072:Gbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyA5:Gbl5RKgOGqml80FrgTRHGvJI08iY7

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks