General
-
Target
e3a09d2431206a351050470dd6b6adb0_NeikiAnalytics
-
Size
70KB
-
Sample
240516-s2zclabg37
-
MD5
e3a09d2431206a351050470dd6b6adb0
-
SHA1
b56b2f421e8fc888d1908d964cabfc55eba050fb
-
SHA256
0284be9b45232902480d39483b96e5f489e0d1d6cf309c555076e1fdba525fe1
-
SHA512
7ee3dc581032421d379107d929323f5be33e85f52adbe9cb23f6e1d6fe20d956b09263f2d443786163163aa3b115e21b8ce155a1b89536751ce5663f710b833d
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8p:Olg35GTslA5t3/w8p
Malware Config
Targets
-
-
Target
e3a09d2431206a351050470dd6b6adb0_NeikiAnalytics
-
Size
70KB
-
MD5
e3a09d2431206a351050470dd6b6adb0
-
SHA1
b56b2f421e8fc888d1908d964cabfc55eba050fb
-
SHA256
0284be9b45232902480d39483b96e5f489e0d1d6cf309c555076e1fdba525fe1
-
SHA512
7ee3dc581032421d379107d929323f5be33e85f52adbe9cb23f6e1d6fe20d956b09263f2d443786163163aa3b115e21b8ce155a1b89536751ce5663f710b833d
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8p:Olg35GTslA5t3/w8p
Score10/10-
Windows security bypass
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Modifies WinLogon
-
Drops file in System32 directory
-