General

  • Target

    a72a7a56282488bca7b14345c3238a80_NeikiAnalytics.exe

  • Size

    91KB

  • Sample

    240614-gh4x7axcnd

  • MD5

    a72a7a56282488bca7b14345c3238a80

  • SHA1

    eb0ed77cae5edba1dbb00e382a5d22d4f385b887

  • SHA256

    b032b049b897527a5ad6ac5c6f0b5e3ba394acfb6b2c05a3432ba194dd18af54

  • SHA512

    cf562f2466d41733712c6a14e554604dc35af0744e322ed92926fd223dc66f54565f7ee30e88538e871b555a36d32daad6f48d236b24e276cd0561cb03d4043e

  • SSDEEP

    768:E3gRYjXbUeHORIC4ZxBMldNKm8Mxm8I+IxrjPfAQ4o3Imucc3gRYjXbUeHORIC40:uT3OA3+KQsxfS4aT3OA3+KQsxfS4u

Score
10/10

Malware Config

Targets

    • Target

      a72a7a56282488bca7b14345c3238a80_NeikiAnalytics.exe

    • Size

      91KB

    • MD5

      a72a7a56282488bca7b14345c3238a80

    • SHA1

      eb0ed77cae5edba1dbb00e382a5d22d4f385b887

    • SHA256

      b032b049b897527a5ad6ac5c6f0b5e3ba394acfb6b2c05a3432ba194dd18af54

    • SHA512

      cf562f2466d41733712c6a14e554604dc35af0744e322ed92926fd223dc66f54565f7ee30e88538e871b555a36d32daad6f48d236b24e276cd0561cb03d4043e

    • SSDEEP

      768:E3gRYjXbUeHORIC4ZxBMldNKm8Mxm8I+IxrjPfAQ4o3Imucc3gRYjXbUeHORIC40:uT3OA3+KQsxfS4aT3OA3+KQsxfS4u

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Disables RegEdit via registry modification

    • Disables use of System Restore points

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks