General
-
Target
92f0f86355cb0fe233c255a403d0fdc0_NeikiAnalytics.exe
-
Size
206KB
-
Sample
240614-amds8sxdja
-
MD5
92f0f86355cb0fe233c255a403d0fdc0
-
SHA1
a11cf77488da2a9d540897cf6636af9baa9568ca
-
SHA256
ea7ed91e4ec73b2c14b26d83bb80bb21ab79f85115710f6e6c573d7547ad22c8
-
SHA512
8d06cb1572717005e842665b6913ba433de12bfa7368fa1de385236c62e29e0f142728a923bb17ff4e45cc091acdaf96a611d322ab962ac8fdf356976b29c4a7
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLi:5vEN2U+T6i5LirrllHy4HUcMQY6Ki
Malware Config
Targets
-
-
Target
92f0f86355cb0fe233c255a403d0fdc0_NeikiAnalytics.exe
-
Size
206KB
-
MD5
92f0f86355cb0fe233c255a403d0fdc0
-
SHA1
a11cf77488da2a9d540897cf6636af9baa9568ca
-
SHA256
ea7ed91e4ec73b2c14b26d83bb80bb21ab79f85115710f6e6c573d7547ad22c8
-
SHA512
8d06cb1572717005e842665b6913ba433de12bfa7368fa1de385236c62e29e0f142728a923bb17ff4e45cc091acdaf96a611d322ab962ac8fdf356976b29c4a7
-
SSDEEP
3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLi:5vEN2U+T6i5LirrllHy4HUcMQY6Ki
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1