General

  • Target

    95f29f3aa44fd9da8f26662ce2f29600_NeikiAnalytics.exe

  • Size

    303KB

  • Sample

    240614-bjlkcaygpc

  • MD5

    95f29f3aa44fd9da8f26662ce2f29600

  • SHA1

    5af4c9f7aaf05fd875fdcde94730dd27b75a9a69

  • SHA256

    44403c674315e4a0b189f05e33667bd7ac0ec14ab12861c0e34e4bc995ff4708

  • SHA512

    272c909f8cd123b585c5dfe1764b4c5fc8a19a536e303d8b7226e3b28a38b9457ead49f0cb79028daa1ec4b59021bbd42da581b6f138763bc10ea9d38ca2430d

  • SSDEEP

    3072:k+JzL2l6wyN5Mn2FenEf5WBKwV5eOVGejsE181gBHSlKAS/BDj:dJzWyknEoXVQOM2ylKfZDj

Malware Config

Targets

    • Target

      95f29f3aa44fd9da8f26662ce2f29600_NeikiAnalytics.exe

    • Size

      303KB

    • MD5

      95f29f3aa44fd9da8f26662ce2f29600

    • SHA1

      5af4c9f7aaf05fd875fdcde94730dd27b75a9a69

    • SHA256

      44403c674315e4a0b189f05e33667bd7ac0ec14ab12861c0e34e4bc995ff4708

    • SHA512

      272c909f8cd123b585c5dfe1764b4c5fc8a19a536e303d8b7226e3b28a38b9457ead49f0cb79028daa1ec4b59021bbd42da581b6f138763bc10ea9d38ca2430d

    • SSDEEP

      3072:k+JzL2l6wyN5Mn2FenEf5WBKwV5eOVGejsE181gBHSlKAS/BDj:dJzWyknEoXVQOM2ylKfZDj

    • Contacts a large (2070) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Registers COM server for autorun

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks