General

  • Target

    323ce40ae9e655785161024f156d63f0_NeikiAnalytics.exe

  • Size

    45KB

  • Sample

    240530-n7txvage31

  • MD5

    323ce40ae9e655785161024f156d63f0

  • SHA1

    4f92bb629226e3c19166e9ec37d9d00c2392623e

  • SHA256

    6592f6aa40b6b796b3ac5fec40fb64f67b6b968414d5310559e4a136da990cca

  • SHA512

    b4da9d3a37fc9252e4b11fadbff3f8c2ab387830b546cbfd0a6b17a9ffef8b7ac50df720800830f3e934006fb8ed597d6c49ed2b2a8ae1498821785ddb4f8e22

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvKMb7rx:RUNHFKQbIkHvGkAFu7l

Malware Config

Targets

    • Target

      323ce40ae9e655785161024f156d63f0_NeikiAnalytics.exe

    • Size

      45KB

    • MD5

      323ce40ae9e655785161024f156d63f0

    • SHA1

      4f92bb629226e3c19166e9ec37d9d00c2392623e

    • SHA256

      6592f6aa40b6b796b3ac5fec40fb64f67b6b968414d5310559e4a136da990cca

    • SHA512

      b4da9d3a37fc9252e4b11fadbff3f8c2ab387830b546cbfd0a6b17a9ffef8b7ac50df720800830f3e934006fb8ed597d6c49ed2b2a8ae1498821785ddb4f8e22

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvKMb7rx:RUNHFKQbIkHvGkAFu7l

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks