General
-
Target
044007ce739624ba281a6f92917c0300_NeikiAnalytics.exe
-
Size
65KB
-
Sample
240608-2vvv9shf2y
-
MD5
044007ce739624ba281a6f92917c0300
-
SHA1
aaddb09fc9f904eec646210ec0a9dd6bea15473f
-
SHA256
f6d6eeac7778cd60477d586d4246a34b85b35d624a5fe8e826cfa668df5b30fd
-
SHA512
3b52d7c2b081e3dc1141db69c3871ecd9c42685206e8f0f3c01af455343aad7b1679ee9e9352d88ec15280e28de735df677b5aaa10d22fced23e0c9a1efe2da1
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuK:7WNqkOJWmo1HpM0MkTUmuK
Malware Config
Targets
-
-
Target
044007ce739624ba281a6f92917c0300_NeikiAnalytics.exe
-
Size
65KB
-
MD5
044007ce739624ba281a6f92917c0300
-
SHA1
aaddb09fc9f904eec646210ec0a9dd6bea15473f
-
SHA256
f6d6eeac7778cd60477d586d4246a34b85b35d624a5fe8e826cfa668df5b30fd
-
SHA512
3b52d7c2b081e3dc1141db69c3871ecd9c42685206e8f0f3c01af455343aad7b1679ee9e9352d88ec15280e28de735df677b5aaa10d22fced23e0c9a1efe2da1
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuK:7WNqkOJWmo1HpM0MkTUmuK
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1