General

  • Target

    8cc3ab9c1d7785ed736b93ca84e6f080_NeikiAnalytics.exe

  • Size

    135KB

  • Sample

    240613-2j1mdatbkd

  • MD5

    8cc3ab9c1d7785ed736b93ca84e6f080

  • SHA1

    b9b493587eece96f496427550be8ccd1cc2ecc87

  • SHA256

    3bec3b30e38493b19e375922992af33722c1d56701f174ea4f1e23c625d1d0ab

  • SHA512

    53f8f76e7f99505e7701b3d5f29fff426eaa3936c7cc34a55f2dd6fefaddbbd1d7cff83101eb9129e87b20a1eb9c4a2bbc80fa5c8128625fc51c184c7091dabb

  • SSDEEP

    3072:s9JuIyD0ZFyHj9eqKEXIeONbiv9z8kih7gsAYkFrH8i:sKI4cFyHjMqK7dNbivDo7rUd8

Score
10/10

Malware Config

Targets

    • Target

      8cc3ab9c1d7785ed736b93ca84e6f080_NeikiAnalytics.exe

    • Size

      135KB

    • MD5

      8cc3ab9c1d7785ed736b93ca84e6f080

    • SHA1

      b9b493587eece96f496427550be8ccd1cc2ecc87

    • SHA256

      3bec3b30e38493b19e375922992af33722c1d56701f174ea4f1e23c625d1d0ab

    • SHA512

      53f8f76e7f99505e7701b3d5f29fff426eaa3936c7cc34a55f2dd6fefaddbbd1d7cff83101eb9129e87b20a1eb9c4a2bbc80fa5c8128625fc51c184c7091dabb

    • SSDEEP

      3072:s9JuIyD0ZFyHj9eqKEXIeONbiv9z8kih7gsAYkFrH8i:sKI4cFyHjMqK7dNbivDo7rUd8

    Score
    10/10
    • Modifies firewall policy service

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Create or Modify System Process

1
T1543

Windows Service

1
T1543.003

Privilege Escalation

Create or Modify System Process

1
T1543

Windows Service

1
T1543.003

Defense Evasion

Modify Registry

1
T1112

Tasks