General
-
Target
29f50d6d826fdfc5e8dc5dba7fb3d829868d9be7bb4b247b4676a394c2bc5b64_NeikiAnalytics.exe
-
Size
108KB
-
Sample
240628-2pjaaathja
-
MD5
9fd6ebb3c5a8c6240e2ce08a39ddebc0
-
SHA1
5103084105da87a979826fc1d4db6041d938fbb1
-
SHA256
29f50d6d826fdfc5e8dc5dba7fb3d829868d9be7bb4b247b4676a394c2bc5b64
-
SHA512
88c401d2b129353f213a6d018fbb40a21f4f3e84046830040905a3849982364649d7dfbbe131ca18b607608dab75fd82acd9fb188be2230cb2b0ffdfafd97cda
-
SSDEEP
3072:SiVnMo+u16pdz2PrMGo9ZRJKnTgRm1lkWM:Ld+uAD28J6n1K
Static task
static1
Behavioral task
behavioral1
Sample
29f50d6d826fdfc5e8dc5dba7fb3d829868d9be7bb4b247b4676a394c2bc5b64_NeikiAnalytics.exe
Resource
win7-20240220-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
http://www.klkjwre9fqwieluoi.info/
http://kukutrustnet777888.info/
Targets
-
-
Target
29f50d6d826fdfc5e8dc5dba7fb3d829868d9be7bb4b247b4676a394c2bc5b64_NeikiAnalytics.exe
-
Size
108KB
-
MD5
9fd6ebb3c5a8c6240e2ce08a39ddebc0
-
SHA1
5103084105da87a979826fc1d4db6041d938fbb1
-
SHA256
29f50d6d826fdfc5e8dc5dba7fb3d829868d9be7bb4b247b4676a394c2bc5b64
-
SHA512
88c401d2b129353f213a6d018fbb40a21f4f3e84046830040905a3849982364649d7dfbbe131ca18b607608dab75fd82acd9fb188be2230cb2b0ffdfafd97cda
-
SSDEEP
3072:SiVnMo+u16pdz2PrMGo9ZRJKnTgRm1lkWM:Ld+uAD28J6n1K
-
Modifies firewall policy service
-
MITRE ATT&CK Matrix ATT&CK v13
Privilege Escalation
Create or Modify System Process
1Windows Service
1Abuse Elevation Control Mechanism
1Bypass User Account Control
1