General
-
Target
1f99e07800ea0364bc736eaafde935d0_NeikiAnalytics.exe
-
Size
274KB
-
Sample
240604-cev4nahe5t
-
MD5
1f99e07800ea0364bc736eaafde935d0
-
SHA1
202e94b7ccd07e726cd7b1a40f054d5bf98a84e3
-
SHA256
9872be18d3d254008c54332d4cd394ad156c47949b2422377dd2d9c527d61868
-
SHA512
73f5f1eceb244fc4105e7c3c2e0cf0cef0c7679c22bf0efe5061c5c9fd6376157f68829f5d08666b60a23e560dbf2111bf12df777ee2dd8d819824a31d416f34
-
SSDEEP
3072:Gbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyA5:Gbl5RKgOGqml80FrgTRHGvJI08iY7
Static task
static1
Behavioral task
behavioral1
Sample
1f99e07800ea0364bc736eaafde935d0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
1f99e07800ea0364bc736eaafde935d0_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
1f99e07800ea0364bc736eaafde935d0_NeikiAnalytics.exe
-
Size
274KB
-
MD5
1f99e07800ea0364bc736eaafde935d0
-
SHA1
202e94b7ccd07e726cd7b1a40f054d5bf98a84e3
-
SHA256
9872be18d3d254008c54332d4cd394ad156c47949b2422377dd2d9c527d61868
-
SHA512
73f5f1eceb244fc4105e7c3c2e0cf0cef0c7679c22bf0efe5061c5c9fd6376157f68829f5d08666b60a23e560dbf2111bf12df777ee2dd8d819824a31d416f34
-
SSDEEP
3072:Gbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyA5:Gbl5RKgOGqml80FrgTRHGvJI08iY7
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Drops file in Drivers directory
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1