General

  • Target

    56c5b459bdf5c0d46c96e8829b0e1d50_NeikiAnalytics.exe

  • Size

    43KB

  • Sample

    240530-n5xkyshd28

  • MD5

    56c5b459bdf5c0d46c96e8829b0e1d50

  • SHA1

    544245f55d947d6b7f379eb23588c5f0ae15c659

  • SHA256

    eba83963f0050530dae4c4252553bcd91cea17b88b8ec9ebf1a64f02e4be48fa

  • SHA512

    d25d124e4dcb9b8cdff8de76af4db5fe458f63b23f438f24514fa1c1544faededd6750ca1e08ab99839d86ba5eb755c4d0a94f50457e60b2bd2d0e6d1b433de2

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvHbH:RUNHFKQbIkHvGkAYbH

Malware Config

Targets

    • Target

      56c5b459bdf5c0d46c96e8829b0e1d50_NeikiAnalytics.exe

    • Size

      43KB

    • MD5

      56c5b459bdf5c0d46c96e8829b0e1d50

    • SHA1

      544245f55d947d6b7f379eb23588c5f0ae15c659

    • SHA256

      eba83963f0050530dae4c4252553bcd91cea17b88b8ec9ebf1a64f02e4be48fa

    • SHA512

      d25d124e4dcb9b8cdff8de76af4db5fe458f63b23f438f24514fa1c1544faededd6750ca1e08ab99839d86ba5eb755c4d0a94f50457e60b2bd2d0e6d1b433de2

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvHbH:RUNHFKQbIkHvGkAYbH

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks