General
-
Target
05ffa9b3922e5d6558f8120891e6f650_NeikiAnalytics.exe
-
Size
200KB
-
Sample
240611-1lfjjssgpn
-
MD5
05ffa9b3922e5d6558f8120891e6f650
-
SHA1
34ed46e8083990a59346dfcd1e8ca4f4898fa222
-
SHA256
962405a0032c06eddfad86d2788747d7e20a35b8478b183fb18f4e31f4485b8e
-
SHA512
b3d3efcc9a7daad37da7e717176c93d16ca8c88248ead4a502a923fc5f993efd29c014e42dcfeca15a08b80b9e60436c37c1e2c27401e53faa962d2dbe58afb9
-
SSDEEP
3072:7vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6uBL9iG:7vEN2U+T6i5LirrllHy4HUcMQY6C9iG
Malware Config
Targets
-
-
Target
05ffa9b3922e5d6558f8120891e6f650_NeikiAnalytics.exe
-
Size
200KB
-
MD5
05ffa9b3922e5d6558f8120891e6f650
-
SHA1
34ed46e8083990a59346dfcd1e8ca4f4898fa222
-
SHA256
962405a0032c06eddfad86d2788747d7e20a35b8478b183fb18f4e31f4485b8e
-
SHA512
b3d3efcc9a7daad37da7e717176c93d16ca8c88248ead4a502a923fc5f993efd29c014e42dcfeca15a08b80b9e60436c37c1e2c27401e53faa962d2dbe58afb9
-
SSDEEP
3072:7vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6uBL9iG:7vEN2U+T6i5LirrllHy4HUcMQY6C9iG
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1