General
-
Target
87bcf4955374c9c3f5a33a69ad2fac90_NeikiAnalytics.exe
-
Size
794KB
-
Sample
240608-dxwnkshb56
-
MD5
87bcf4955374c9c3f5a33a69ad2fac90
-
SHA1
85456342e1c5ee1285b62f072f0fd5d463630373
-
SHA256
ccaa66f746631c0a50b471d1e0cc1254c1b43560a5c457eb55ffdbc46a12f0c7
-
SHA512
b5dc4a3701ea59d63e4eb149d880535b8b5d1dc5fa36256291feb1172ff4bda89f93ffe75fec3109413ff3c36d93903988cc0bfa4b8f044b54c79468cf9a371c
-
SSDEEP
12288:M8kxNhOZElO5kkWjhD4AysGtAtScw3qEKBYG:jqEkfF6145
Malware Config
Targets
-
-
Target
87bcf4955374c9c3f5a33a69ad2fac90_NeikiAnalytics.exe
-
Size
794KB
-
MD5
87bcf4955374c9c3f5a33a69ad2fac90
-
SHA1
85456342e1c5ee1285b62f072f0fd5d463630373
-
SHA256
ccaa66f746631c0a50b471d1e0cc1254c1b43560a5c457eb55ffdbc46a12f0c7
-
SHA512
b5dc4a3701ea59d63e4eb149d880535b8b5d1dc5fa36256291feb1172ff4bda89f93ffe75fec3109413ff3c36d93903988cc0bfa4b8f044b54c79468cf9a371c
-
SSDEEP
12288:M8kxNhOZElO5kkWjhD4AysGtAtScw3qEKBYG:jqEkfF6145
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1