General
-
Target
d5a45c84f0962f47d5a095d671b4b760_NEIKI
-
Size
70KB
-
Sample
240508-rgr74sgd3x
-
MD5
d5a45c84f0962f47d5a095d671b4b760
-
SHA1
0823dc51ab56e3d9d348b2e715601ba7d00e55f5
-
SHA256
7fd3560e7288e1eb9ca2161f0c4a06209b46cd90514fdb968f630a23daa672de
-
SHA512
5338a4651e0a12b5ef717f774de8cb017dd49b9590c8985a7076ca6e8f97eb87f3ad753558429aa591148900e59d3be6b2e5901aa1299a319e28159d0835831a
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8sl67y:Olg35GTslA5t3/w877y
Malware Config
Targets
-
-
Target
d5a45c84f0962f47d5a095d671b4b760_NEIKI
-
Size
70KB
-
MD5
d5a45c84f0962f47d5a095d671b4b760
-
SHA1
0823dc51ab56e3d9d348b2e715601ba7d00e55f5
-
SHA256
7fd3560e7288e1eb9ca2161f0c4a06209b46cd90514fdb968f630a23daa672de
-
SHA512
5338a4651e0a12b5ef717f774de8cb017dd49b9590c8985a7076ca6e8f97eb87f3ad753558429aa591148900e59d3be6b2e5901aa1299a319e28159d0835831a
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8sl67y:Olg35GTslA5t3/w877y
Score10/10-
Windows security bypass
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Modifies WinLogon
-
Drops file in System32 directory
-