General
-
Target
1d61cba7849ce44e167e4722f18a9620_NeikiAnalytics.exe
-
Size
66KB
-
Sample
240606-1hdksade54
-
MD5
1d61cba7849ce44e167e4722f18a9620
-
SHA1
13f59780f8d9ba09c2d7881eb676b0f8b001cefa
-
SHA256
17dde2c0b57cc387900901ab24748b470e4ac166024cee18b6d1921bbaf035dc
-
SHA512
38175bd199fede529cce3b55ed2363eeb1f349d0cee80ff4c77c6d69740ea69fe8571b5c6c53cbe3916bcfe33f3fece5a25844795b081b27f3d21d84d1009456
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXi1:IeklMMYJhqezw/pXzH9i1
Malware Config
Targets
-
-
Target
1d61cba7849ce44e167e4722f18a9620_NeikiAnalytics.exe
-
Size
66KB
-
MD5
1d61cba7849ce44e167e4722f18a9620
-
SHA1
13f59780f8d9ba09c2d7881eb676b0f8b001cefa
-
SHA256
17dde2c0b57cc387900901ab24748b470e4ac166024cee18b6d1921bbaf035dc
-
SHA512
38175bd199fede529cce3b55ed2363eeb1f349d0cee80ff4c77c6d69740ea69fe8571b5c6c53cbe3916bcfe33f3fece5a25844795b081b27f3d21d84d1009456
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXi1:IeklMMYJhqezw/pXzH9i1
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1