General
-
Target
136d1122ad4c00c5f10a13558842b630_NeikiAnalytics.exe
-
Size
65KB
-
Sample
240606-tzwpcshf53
-
MD5
136d1122ad4c00c5f10a13558842b630
-
SHA1
658b7ce961b1e03386be6c17b84a7af8cb4595dd
-
SHA256
0e7d5ad6a29cf1bff20666d4f3b38327fc9adac35f7196fcf327c67fa0189bdc
-
SHA512
39de3a3c3f5875982afa115390086c457b7ac8cc6e07ed82c128c04a6a35a29439f74495bede4496cec05a9e5e8c196f86ce53b61ad96190c39a83bf6705b53a
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuL:7WNqkOJWmo1HpM0MkTUmuL
Malware Config
Targets
-
-
Target
136d1122ad4c00c5f10a13558842b630_NeikiAnalytics.exe
-
Size
65KB
-
MD5
136d1122ad4c00c5f10a13558842b630
-
SHA1
658b7ce961b1e03386be6c17b84a7af8cb4595dd
-
SHA256
0e7d5ad6a29cf1bff20666d4f3b38327fc9adac35f7196fcf327c67fa0189bdc
-
SHA512
39de3a3c3f5875982afa115390086c457b7ac8cc6e07ed82c128c04a6a35a29439f74495bede4496cec05a9e5e8c196f86ce53b61ad96190c39a83bf6705b53a
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuL:7WNqkOJWmo1HpM0MkTUmuL
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1