General

  • Target

    52b7594891c017fb5d3e0fec5bea5aec4710168e66775f6f99165b04ebd51b3c_NeikiAnalytics

  • Size

    256KB

  • Sample

    240521-qf1bnafb6w

  • MD5

    c377541d954fe3f9d910ed577e2870b0

  • SHA1

    10a5c8dacb877388518609bc6db1c86101f67bcb

  • SHA256

    52b7594891c017fb5d3e0fec5bea5aec4710168e66775f6f99165b04ebd51b3c

  • SHA512

    c2c39191094734a9ae34e4db98e37615205abd4402b28960476ffc0a43103676f7782531b06edc9e9587cf0d6eaa243531e185aaf8bb2c58ccfd67dbbb5f0165

  • SSDEEP

    6144:GDLQxoyQ1LpnFyZ+dayL9rvolH8u3ZhGod:WQCyQ1LHk+zR7QHjGo

Malware Config

Targets

    • Target

      52b7594891c017fb5d3e0fec5bea5aec4710168e66775f6f99165b04ebd51b3c_NeikiAnalytics

    • Size

      256KB

    • MD5

      c377541d954fe3f9d910ed577e2870b0

    • SHA1

      10a5c8dacb877388518609bc6db1c86101f67bcb

    • SHA256

      52b7594891c017fb5d3e0fec5bea5aec4710168e66775f6f99165b04ebd51b3c

    • SHA512

      c2c39191094734a9ae34e4db98e37615205abd4402b28960476ffc0a43103676f7782531b06edc9e9587cf0d6eaa243531e185aaf8bb2c58ccfd67dbbb5f0165

    • SSDEEP

      6144:GDLQxoyQ1LpnFyZ+dayL9rvolH8u3ZhGod:WQCyQ1LHk+zR7QHjGo

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Deletes itself

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks