General
-
Target
0f13f8a2c0325bcc4440f1f72eecd400_NeikiAnalytics.exe
-
Size
65KB
-
Sample
240616-1nxkvatdnr
-
MD5
0f13f8a2c0325bcc4440f1f72eecd400
-
SHA1
91bb8e4a4eb05e125084903a8b57a0aa9728a73f
-
SHA256
9b0446f6fbf3759d691d1aa42999f3694d56df2db8ec88da5342060fb26a9e0f
-
SHA512
112c30eeb6dc7f97966f26c8242052baed5d41e0383c5a519b9470fa980846c2aef9c3240007bc00c72eb598786ed8b85fa29e996b9826e155fc0c02bb99e66a
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/Oul:7WNqkOJWmo1HpM0MkTUmul
Malware Config
Targets
-
-
Target
0f13f8a2c0325bcc4440f1f72eecd400_NeikiAnalytics.exe
-
Size
65KB
-
MD5
0f13f8a2c0325bcc4440f1f72eecd400
-
SHA1
91bb8e4a4eb05e125084903a8b57a0aa9728a73f
-
SHA256
9b0446f6fbf3759d691d1aa42999f3694d56df2db8ec88da5342060fb26a9e0f
-
SHA512
112c30eeb6dc7f97966f26c8242052baed5d41e0383c5a519b9470fa980846c2aef9c3240007bc00c72eb598786ed8b85fa29e996b9826e155fc0c02bb99e66a
-
SSDEEP
1536:ECq3yRuqrI01eArdW/O7JnI2e13XiLij40MkTUVqa/Oul:7WNqkOJWmo1HpM0MkTUmul
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1