General

  • Target

    8f364601601ab7f8f42b1585a9bd3ad0_NeikiAnalytics.exe

  • Size

    481KB

  • Sample

    240601-f5vglabd7t

  • MD5

    8f364601601ab7f8f42b1585a9bd3ad0

  • SHA1

    569564d674871cecb82583f5d781c0474500f08f

  • SHA256

    7203c5f8119f045feeda39459dc48fb2861d8d07207300c5959297c5407caf9e

  • SHA512

    db0fe520c0e09b8d6c5cd8493d4e300d303f630c1f00e5a2c71213cfd39af0a879a8af31129b4b3813a3e5cd38cfab9becc31fcf564877400337ba1c9b4c7c5e

  • SSDEEP

    6144:pjFRiOcXH6XWD0w1tizmtnktLJ6znvxNcCI+1jDIlnJ9+1aTEPTnOK4JKElDnI:nRDc3yWDNU+YUznzNjElWaT07NQtDI

Score
10/10

Malware Config

Targets

    • Target

      8f364601601ab7f8f42b1585a9bd3ad0_NeikiAnalytics.exe

    • Size

      481KB

    • MD5

      8f364601601ab7f8f42b1585a9bd3ad0

    • SHA1

      569564d674871cecb82583f5d781c0474500f08f

    • SHA256

      7203c5f8119f045feeda39459dc48fb2861d8d07207300c5959297c5407caf9e

    • SHA512

      db0fe520c0e09b8d6c5cd8493d4e300d303f630c1f00e5a2c71213cfd39af0a879a8af31129b4b3813a3e5cd38cfab9becc31fcf564877400337ba1c9b4c7c5e

    • SSDEEP

      6144:pjFRiOcXH6XWD0w1tizmtnktLJ6znvxNcCI+1jDIlnJ9+1aTEPTnOK4JKElDnI:nRDc3yWDNU+YUznzNjElWaT07NQtDI

    Score
    10/10
    • Modifies firewall policy service

    • Adds policy Run key to start application

    • Sets service image path in registry

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks