General

  • Target

    6b4af93c8ac3810a867a42c2e34476474556243e63761df2dfa6d0ae7147233e_NeikiAnalytics.exe

  • Size

    337KB

  • Sample

    240623-n8p1aazbnh

  • MD5

    4fcefc1cc5e5a2683523a5d01c986430

  • SHA1

    7dfcfc48f8913553c5635990daa75c48c3fad59e

  • SHA256

    6b4af93c8ac3810a867a42c2e34476474556243e63761df2dfa6d0ae7147233e

  • SHA512

    e6c025369312c95ba9554e89e20a4ae6442807b303f322a4ab5fd6cae60187ef392c99f961a2cd26940a033c18599b92317fa25f65fbb9fdf1e3315f5cebd78d

  • SSDEEP

    3072:8GY3Z3S2W2Tw35yoNAD3yKJzgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:8/i92TwJZAD3rz1+fIyG5jZkCwi8r

Malware Config

Targets

    • Target

      6b4af93c8ac3810a867a42c2e34476474556243e63761df2dfa6d0ae7147233e_NeikiAnalytics.exe

    • Size

      337KB

    • MD5

      4fcefc1cc5e5a2683523a5d01c986430

    • SHA1

      7dfcfc48f8913553c5635990daa75c48c3fad59e

    • SHA256

      6b4af93c8ac3810a867a42c2e34476474556243e63761df2dfa6d0ae7147233e

    • SHA512

      e6c025369312c95ba9554e89e20a4ae6442807b303f322a4ab5fd6cae60187ef392c99f961a2cd26940a033c18599b92317fa25f65fbb9fdf1e3315f5cebd78d

    • SSDEEP

      3072:8GY3Z3S2W2Tw35yoNAD3yKJzgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:8/i92TwJZAD3rz1+fIyG5jZkCwi8r

    • Adds autorun key to be loaded by Explorer.exe on startup

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks