General
-
Target
3737f5ec040b2beb023256e23f621c30_NeikiAnalytics.exe
-
Size
66KB
-
Sample
240617-cy3mvavbjj
-
MD5
3737f5ec040b2beb023256e23f621c30
-
SHA1
3a2dcc1f0755172f916e4f97e2bd83a26de81df7
-
SHA256
25c4ef606891510b36fe99d74aa56033bdcff40a9316d4f02b518bdeb7a03d16
-
SHA512
6977bb44b370829d4dd873df18451bcb28214f0a48297ec41159be6ecbd505156e2999c6e4e7e4f16e332efbb778d49040663c1b7a19957709257890b3668e87
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXif:IeklMMYJhqezw/pXzH9if
Malware Config
Targets
-
-
Target
3737f5ec040b2beb023256e23f621c30_NeikiAnalytics.exe
-
Size
66KB
-
MD5
3737f5ec040b2beb023256e23f621c30
-
SHA1
3a2dcc1f0755172f916e4f97e2bd83a26de81df7
-
SHA256
25c4ef606891510b36fe99d74aa56033bdcff40a9316d4f02b518bdeb7a03d16
-
SHA512
6977bb44b370829d4dd873df18451bcb28214f0a48297ec41159be6ecbd505156e2999c6e4e7e4f16e332efbb778d49040663c1b7a19957709257890b3668e87
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXif:IeklMMYJhqezw/pXzH9if
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1