General

  • Target

    529788ad5e16a4ba45e5a59a62feecc0_NeikiAnalytics.exe

  • Size

    237KB

  • Sample

    240613-bhmq1sycpd

  • MD5

    529788ad5e16a4ba45e5a59a62feecc0

  • SHA1

    09e6bc808d4fbfd78a39a878325f4dc49fe89bcb

  • SHA256

    dac699fc680c5f9ab08e82cde1093b4e9fc3c85fa564811c96e9ea78591c81fe

  • SHA512

    2906f223a0daa49eba847d14ce7b179f868ed9c5d88079b8c01d98fe6d963a2e427910a7c1b17e7f65c9134c69aee297089a032941f5fc35bc15089eefc30d99

  • SSDEEP

    6144:sD8okEvTyoZVOgd2QZiw5NLclL5orfQH:usjCF2QZiOU+4

Score
10/10

Malware Config

Targets

    • Target

      529788ad5e16a4ba45e5a59a62feecc0_NeikiAnalytics.exe

    • Size

      237KB

    • MD5

      529788ad5e16a4ba45e5a59a62feecc0

    • SHA1

      09e6bc808d4fbfd78a39a878325f4dc49fe89bcb

    • SHA256

      dac699fc680c5f9ab08e82cde1093b4e9fc3c85fa564811c96e9ea78591c81fe

    • SHA512

      2906f223a0daa49eba847d14ce7b179f868ed9c5d88079b8c01d98fe6d963a2e427910a7c1b17e7f65c9134c69aee297089a032941f5fc35bc15089eefc30d99

    • SSDEEP

      6144:sD8okEvTyoZVOgd2QZiw5NLclL5orfQH:usjCF2QZiOU+4

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies WinLogon

MITRE ATT&CK Enterprise v15

Tasks