General
-
Target
b09fe17984461dec2f9beece4166a5f9ce67346791acc785dd7d1da907ac77e0_NeikiAnalytics.exe
-
Size
741KB
-
Sample
240629-sjbtkszeke
-
MD5
99a7ec08d91b74be23c646b7ea720f20
-
SHA1
6b5120be77f269614904f4fc3c44d3f665abdfea
-
SHA256
b09fe17984461dec2f9beece4166a5f9ce67346791acc785dd7d1da907ac77e0
-
SHA512
1a484e56098d65ffadf36b85c3558d7a268883e14ac0e7fa2a322744a876af692567b6486acc691b2a96e3ee4a8e65152fbe5f98679e416d946c0c7d8e0878f4
-
SSDEEP
12288:ltTuhrf45I8jWtJ8OgL27rd69bk5NCgGhSFB79gYhLIf6EQ9EYcw1Fn:lIt4kt0Kd6F6CNzYhUiEWEYcwP
Malware Config
Targets
-
-
Target
b09fe17984461dec2f9beece4166a5f9ce67346791acc785dd7d1da907ac77e0_NeikiAnalytics.exe
-
Size
741KB
-
MD5
99a7ec08d91b74be23c646b7ea720f20
-
SHA1
6b5120be77f269614904f4fc3c44d3f665abdfea
-
SHA256
b09fe17984461dec2f9beece4166a5f9ce67346791acc785dd7d1da907ac77e0
-
SHA512
1a484e56098d65ffadf36b85c3558d7a268883e14ac0e7fa2a322744a876af692567b6486acc691b2a96e3ee4a8e65152fbe5f98679e416d946c0c7d8e0878f4
-
SSDEEP
12288:ltTuhrf45I8jWtJ8OgL27rd69bk5NCgGhSFB79gYhLIf6EQ9EYcw1Fn:lIt4kt0Kd6F6CNzYhUiEWEYcwP
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1