General
-
Target
a50a4ffc13789c21f4ca3bb26ac772e0_NeikiAnalytics.exe
-
Size
72KB
-
Sample
240524-ewc1hsch6s
-
MD5
a50a4ffc13789c21f4ca3bb26ac772e0
-
SHA1
5f6594a2bb6a46bb95c6b701595925c271c7d4e5
-
SHA256
ae583673f063754f706c4f6b999b7050304b148052e24559d81482045ef9f054
-
SHA512
b5872eac86fc8e5b6593dcd3d0bd3e520d2cbfa4c173d32cc4300138fdf431daa4be77935a1b933e2d68b3b1325e6727ef22494b1e6f862bd46290b564d9281e
-
SSDEEP
1536:xjwJoosva/cbBJ8LneoOO6S5rWoaNTwwwwwwwwwvi:j//8LeoOoJaNWi
Malware Config
Targets
-
-
Target
a50a4ffc13789c21f4ca3bb26ac772e0_NeikiAnalytics.exe
-
Size
72KB
-
MD5
a50a4ffc13789c21f4ca3bb26ac772e0
-
SHA1
5f6594a2bb6a46bb95c6b701595925c271c7d4e5
-
SHA256
ae583673f063754f706c4f6b999b7050304b148052e24559d81482045ef9f054
-
SHA512
b5872eac86fc8e5b6593dcd3d0bd3e520d2cbfa4c173d32cc4300138fdf431daa4be77935a1b933e2d68b3b1325e6727ef22494b1e6f862bd46290b564d9281e
-
SSDEEP
1536:xjwJoosva/cbBJ8LneoOO6S5rWoaNTwwwwwwwwwvi:j//8LeoOoJaNWi
Score10/10-
Windows security bypass
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Modifies WinLogon
-
Drops file in System32 directory
-