General

  • Target

    5391c51c03872acaaa0da59abd75b810_NeikiAnalytics.exe

  • Size

    43KB

  • Sample

    240526-c2c7csbg6t

  • MD5

    5391c51c03872acaaa0da59abd75b810

  • SHA1

    4fbd1670b423e9f385a41726fc87ef153fc1de95

  • SHA256

    ae471fcbd06e2e06fe35a6ddde3ed5952aef02c21ffeab0de756a6423b74c34d

  • SHA512

    ed968769ec18890db137b7605765e856013330d0bac39e281f85faf0b3fb4ce83d41fb83147f6f07e20f2251e0eb81857d362b3443e540cf0d851a5884e58f66

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvadKg:RUNHFKQbIkHvGkAIg

Malware Config

Targets

    • Target

      5391c51c03872acaaa0da59abd75b810_NeikiAnalytics.exe

    • Size

      43KB

    • MD5

      5391c51c03872acaaa0da59abd75b810

    • SHA1

      4fbd1670b423e9f385a41726fc87ef153fc1de95

    • SHA256

      ae471fcbd06e2e06fe35a6ddde3ed5952aef02c21ffeab0de756a6423b74c34d

    • SHA512

      ed968769ec18890db137b7605765e856013330d0bac39e281f85faf0b3fb4ce83d41fb83147f6f07e20f2251e0eb81857d362b3443e540cf0d851a5884e58f66

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvadKg:RUNHFKQbIkHvGkAIg

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks