General
-
Target
23ae11e5ff61b1a2000ea4e5e6b990b0_NEIKI
-
Size
71KB
-
Sample
240508-j422tsah91
-
MD5
23ae11e5ff61b1a2000ea4e5e6b990b0
-
SHA1
684d3fe071ec4230a2f3066762cd873b70a93d0b
-
SHA256
4275cc0d4b47d33b4493b7cc8dfcbb9359d895cc8c5b6ac016e94ef627e1d06c
-
SHA512
7a45035e195d9d640c959acd76f10b7bce4d4c6c82834b58511e7bb932a5329cf2eddcf52c3164daad518cbe0a1aaced407beacba45999d81db1ce8dc80d1641
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8sla:Olg35GTslA5t3/w8H
Malware Config
Targets
-
-
Target
23ae11e5ff61b1a2000ea4e5e6b990b0_NEIKI
-
Size
71KB
-
MD5
23ae11e5ff61b1a2000ea4e5e6b990b0
-
SHA1
684d3fe071ec4230a2f3066762cd873b70a93d0b
-
SHA256
4275cc0d4b47d33b4493b7cc8dfcbb9359d895cc8c5b6ac016e94ef627e1d06c
-
SHA512
7a45035e195d9d640c959acd76f10b7bce4d4c6c82834b58511e7bb932a5329cf2eddcf52c3164daad518cbe0a1aaced407beacba45999d81db1ce8dc80d1641
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8sla:Olg35GTslA5t3/w8H
Score10/10-
Windows security bypass
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Modifies WinLogon
-
Drops file in System32 directory
-