General

  • Target

    98b318763fb6b0a98f6eafed25a424f0_NeikiAnalytics.exe

  • Size

    24KB

  • Sample

    240603-c8tspahh37

  • MD5

    98b318763fb6b0a98f6eafed25a424f0

  • SHA1

    a557d9804cac574511eccb912b1fea310603c8d7

  • SHA256

    75409e285e055065ba6ce226dc4c3999be592245c8cacf43688fa6adca08c0f4

  • SHA512

    ae3edd5af5b98405e523e92872806c63d6d93a6068716da8a607be45efbf1979277af42996f7c59926f318bfd9b85cd63746ce3e4df00e2019ce40a6e0bffc8b

  • SSDEEP

    768:jIU1gziujq7x1vi4EKjw6nCRZ4dOEjnJ9gTycdo0Ba4X8G0Pzj75AlgfaZhXR3N5:jPgWujq7x1PVXzJ9SdbSnG7

Malware Config

Targets

    • Target

      98b318763fb6b0a98f6eafed25a424f0_NeikiAnalytics.exe

    • Size

      24KB

    • MD5

      98b318763fb6b0a98f6eafed25a424f0

    • SHA1

      a557d9804cac574511eccb912b1fea310603c8d7

    • SHA256

      75409e285e055065ba6ce226dc4c3999be592245c8cacf43688fa6adca08c0f4

    • SHA512

      ae3edd5af5b98405e523e92872806c63d6d93a6068716da8a607be45efbf1979277af42996f7c59926f318bfd9b85cd63746ce3e4df00e2019ce40a6e0bffc8b

    • SSDEEP

      768:jIU1gziujq7x1vi4EKjw6nCRZ4dOEjnJ9gTycdo0Ba4X8G0Pzj75AlgfaZhXR3N5:jPgWujq7x1PVXzJ9SdbSnG7

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks