General
-
Target
8c18a403b9c421c2766337291b207470_NeikiAnalytics.exe
-
Size
65KB
-
Sample
240613-2cscessgjg
-
MD5
8c18a403b9c421c2766337291b207470
-
SHA1
7aa0f03b42d2e916509fca26c7b38bd505c03bdc
-
SHA256
e8a18138bbf6382520c7f36a32c33d5f7a490041158b8f4984e50d0016af7f93
-
SHA512
8433f0a6e1742c19de15d08d3333ca0691b9847e23e5e457c4b1c5952eb4c923ea0bb18356536ece42b154944e8a6bad6751a1dfe8684ab2400e66af8708cc38
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuZ000000000000000000X:7WNqkOJWmo1HpM0MkTUmuF
Malware Config
Targets
-
-
Target
8c18a403b9c421c2766337291b207470_NeikiAnalytics.exe
-
Size
65KB
-
MD5
8c18a403b9c421c2766337291b207470
-
SHA1
7aa0f03b42d2e916509fca26c7b38bd505c03bdc
-
SHA256
e8a18138bbf6382520c7f36a32c33d5f7a490041158b8f4984e50d0016af7f93
-
SHA512
8433f0a6e1742c19de15d08d3333ca0691b9847e23e5e457c4b1c5952eb4c923ea0bb18356536ece42b154944e8a6bad6751a1dfe8684ab2400e66af8708cc38
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/OuZ000000000000000000X:7WNqkOJWmo1HpM0MkTUmuF
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1