General
-
Target
4a52794a8049b5a536306e33b93d1450_NeikiAnalytics.exe
-
Size
207KB
-
Sample
240612-2ny94stdkh
-
MD5
4a52794a8049b5a536306e33b93d1450
-
SHA1
f826479f48a3c4bb2d9f0d5eb2da3e7bd34f024b
-
SHA256
c1e4985eef887e50185f1ba2e28d148e721be38782a542298be1fdff1294218f
-
SHA512
a6df7e52d8e9bde571507ee1864a6aca5ce18c30907b5a064bccbc8a0a256bc617a96ac4c712b92f8be8a662034ae7fac02d132c65934e3cb5d870bf4db4c7d1
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLt:5vEN2U+T6i5LirrllHy4HUcMQY6Kt
Malware Config
Targets
-
-
Target
4a52794a8049b5a536306e33b93d1450_NeikiAnalytics.exe
-
Size
207KB
-
MD5
4a52794a8049b5a536306e33b93d1450
-
SHA1
f826479f48a3c4bb2d9f0d5eb2da3e7bd34f024b
-
SHA256
c1e4985eef887e50185f1ba2e28d148e721be38782a542298be1fdff1294218f
-
SHA512
a6df7e52d8e9bde571507ee1864a6aca5ce18c30907b5a064bccbc8a0a256bc617a96ac4c712b92f8be8a662034ae7fac02d132c65934e3cb5d870bf4db4c7d1
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLt:5vEN2U+T6i5LirrllHy4HUcMQY6Kt
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1