General
-
Target
29cf7612c567c31341256b53c71a8830_NeikiAnalytics
-
Size
70KB
-
Sample
240511-xbzynabh4v
-
MD5
29cf7612c567c31341256b53c71a8830
-
SHA1
fe0dd686f6d3dff9aacd289f409045f99ca1a58b
-
SHA256
6b542e79f6a0223462c61a73d1e2c4ad7367967a64e329dde16d0630e1ad1863
-
SHA512
23359053fb958e9a5f99e6a4909c21c7bc66853d7180030becb6368d7f571ba03bb86c516f1ffb551eedb40f7ad9b21e2a51b902c26b9b47b018f63d8e64893a
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8Qy:Olg35GTslA5t3/w8Qy
Malware Config
Targets
-
-
Target
29cf7612c567c31341256b53c71a8830_NeikiAnalytics
-
Size
70KB
-
MD5
29cf7612c567c31341256b53c71a8830
-
SHA1
fe0dd686f6d3dff9aacd289f409045f99ca1a58b
-
SHA256
6b542e79f6a0223462c61a73d1e2c4ad7367967a64e329dde16d0630e1ad1863
-
SHA512
23359053fb958e9a5f99e6a4909c21c7bc66853d7180030becb6368d7f571ba03bb86c516f1ffb551eedb40f7ad9b21e2a51b902c26b9b47b018f63d8e64893a
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8Qy:Olg35GTslA5t3/w8Qy
Score10/10-
Windows security bypass
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Modifies WinLogon
-
Drops file in System32 directory
-