General

  • Target

    9f776880d6acb914d3c87b022b496380_NeikiAnalytics.exe

  • Size

    480KB

  • Sample

    240603-hsksqsfe6y

  • MD5

    9f776880d6acb914d3c87b022b496380

  • SHA1

    6065853fd12571c5491ae924a021fa2455f89a6b

  • SHA256

    06b1e269abd52b8953eb46d0fa46443f8300a603f7925ba418c9371df0e452d9

  • SHA512

    be6fdab9478526defd02edb5af08cd178610b07e9513dc581b15aef784bc6677098416e5bafeb14e34eb47248f442fe7776adda833a1f50d54ccf6b1124aef1c

  • SSDEEP

    6144:pjFRiOcXH6XWD0w1tizmtnktLJ6znvxNcCI+1jDIlnJ9+1aTEPTnOK4JKElDn1f:nRDc3yWDNU+YUznzNjElWaT07NQtD1f

Score
10/10

Malware Config

Targets

    • Target

      9f776880d6acb914d3c87b022b496380_NeikiAnalytics.exe

    • Size

      480KB

    • MD5

      9f776880d6acb914d3c87b022b496380

    • SHA1

      6065853fd12571c5491ae924a021fa2455f89a6b

    • SHA256

      06b1e269abd52b8953eb46d0fa46443f8300a603f7925ba418c9371df0e452d9

    • SHA512

      be6fdab9478526defd02edb5af08cd178610b07e9513dc581b15aef784bc6677098416e5bafeb14e34eb47248f442fe7776adda833a1f50d54ccf6b1124aef1c

    • SSDEEP

      6144:pjFRiOcXH6XWD0w1tizmtnktLJ6znvxNcCI+1jDIlnJ9+1aTEPTnOK4JKElDn1f:nRDc3yWDNU+YUznzNjElWaT07NQtD1f

    Score
    10/10
    • Modifies firewall policy service

    • Adds policy Run key to start application

    • Sets service image path in registry

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks