General
-
Target
b8976800e89f97070b9760a2f218cab0_NeikiAnalytics.exe
-
Size
70KB
-
Sample
240517-gjthvacb9v
-
MD5
b8976800e89f97070b9760a2f218cab0
-
SHA1
ad1f8038b64c9487054c4485630838d0e4337266
-
SHA256
0b01b0716ab93cba3924918b1e2c2b59d32dd1fea46b2197040d93af8a37094b
-
SHA512
0e58cd33957ee1d5b70ef624985549b2574bf0d3f77c3e00ef06601448dad9d428c86cc4990917e254c8a18ecb9fed9875e2faddc01f85c1d78d69477573c0ff
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8pC:Olg35GTslA5t3/w8pC
Malware Config
Targets
-
-
Target
b8976800e89f97070b9760a2f218cab0_NeikiAnalytics.exe
-
Size
70KB
-
MD5
b8976800e89f97070b9760a2f218cab0
-
SHA1
ad1f8038b64c9487054c4485630838d0e4337266
-
SHA256
0b01b0716ab93cba3924918b1e2c2b59d32dd1fea46b2197040d93af8a37094b
-
SHA512
0e58cd33957ee1d5b70ef624985549b2574bf0d3f77c3e00ef06601448dad9d428c86cc4990917e254c8a18ecb9fed9875e2faddc01f85c1d78d69477573c0ff
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8pC:Olg35GTslA5t3/w8pC
Score10/10-
Windows security bypass
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Modifies WinLogon
-
Drops file in System32 directory
-