General
-
Target
09c34b1deb789f1fba5a8dabf76b6740_NeikiAnalytics.exe
-
Size
66KB
-
Sample
240611-2m13bavdjm
-
MD5
09c34b1deb789f1fba5a8dabf76b6740
-
SHA1
0e1590f2ab4cd4cdcf04988992809c6815bffbda
-
SHA256
8989a4e9cd5f257653eb4672e5fbd9998552e1f3521c1056ed5b8fc780e60ed8
-
SHA512
eaf91c1a1fb539d97b587d46b7116e81561275865c981e546248478e983aeb62d42800d7c02e63a5e52b879e99482468e4419e888b932857a925179199e1c44d
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXiE:IeklMMYJhqezw/pXzH9iE
Malware Config
Targets
-
-
Target
09c34b1deb789f1fba5a8dabf76b6740_NeikiAnalytics.exe
-
Size
66KB
-
MD5
09c34b1deb789f1fba5a8dabf76b6740
-
SHA1
0e1590f2ab4cd4cdcf04988992809c6815bffbda
-
SHA256
8989a4e9cd5f257653eb4672e5fbd9998552e1f3521c1056ed5b8fc780e60ed8
-
SHA512
eaf91c1a1fb539d97b587d46b7116e81561275865c981e546248478e983aeb62d42800d7c02e63a5e52b879e99482468e4419e888b932857a925179199e1c44d
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXiE:IeklMMYJhqezw/pXzH9iE
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1