General
-
Target
36a800275d8aa1ff86511f06eebb1230_NeikiAnalytics.exe
-
Size
66KB
-
Sample
240611-qw1mcsyhjp
-
MD5
36a800275d8aa1ff86511f06eebb1230
-
SHA1
b164a68f40d6234d313d97c30bd05876471a7012
-
SHA256
325ab324f3ae0e117a249454b78e43864562d3027b9be5a308b718bb0afbfb6b
-
SHA512
4cee6217901768577cbb3e2d7cfea9c8817def77e694b2d67f74217a663405ae05bd455f0f8b28224f1e4f6b6e1025c57362fe23d4434d17768eb3ab9a804b61
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXi9:IeklMMYJhqezw/pXzH9i9
Malware Config
Targets
-
-
Target
36a800275d8aa1ff86511f06eebb1230_NeikiAnalytics.exe
-
Size
66KB
-
MD5
36a800275d8aa1ff86511f06eebb1230
-
SHA1
b164a68f40d6234d313d97c30bd05876471a7012
-
SHA256
325ab324f3ae0e117a249454b78e43864562d3027b9be5a308b718bb0afbfb6b
-
SHA512
4cee6217901768577cbb3e2d7cfea9c8817def77e694b2d67f74217a663405ae05bd455f0f8b28224f1e4f6b6e1025c57362fe23d4434d17768eb3ab9a804b61
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXi9:IeklMMYJhqezw/pXzH9i9
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1