Overview

overview

10

Static

static

3

d0b867f7ff...cs.exe

windows7-x64

10

d0b867f7ff...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d0b867f7ff562d8058f7dabe36345980_NeikiAnalytics.exe

  • Size

    45KB

  • Sample

    240522-ytpq3seg28

  • MD5

    d0b867f7ff562d8058f7dabe36345980

  • SHA1

    56f4e743a55d78930316c6e795a1c1460a1eab92

  • SHA256

    583f6348e0a91895619683d8df5e19ca186abee24ac4c2daa314004510769db2

  • SHA512

    c132194987e94294fe153f618b794017a9f30a6d5a51f09b7777f1306e84f4e3da15a6d0a593b55e54cbbb2e38b7589d65c657f277bf59ca688ad267694235e4

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvBucNh:RUNHFKQbIkHvGkAOn

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      d0b867f7ff562d8058f7dabe36345980_NeikiAnalytics.exe

    • Size

      45KB

    • MD5

      d0b867f7ff562d8058f7dabe36345980

    • SHA1

      56f4e743a55d78930316c6e795a1c1460a1eab92

    • SHA256

      583f6348e0a91895619683d8df5e19ca186abee24ac4c2daa314004510769db2

    • SHA512

      c132194987e94294fe153f618b794017a9f30a6d5a51f09b7777f1306e84f4e3da15a6d0a593b55e54cbbb2e38b7589d65c657f277bf59ca688ad267694235e4

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvBucNh:RUNHFKQbIkHvGkAOn

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks