Overview

overview

7

Static

static

3

901fbe1c5c...KI.exe

windows7-x64

7

901fbe1c5c...KI.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    901fbe1c5cc2db631a161934d8d99d50_NEIKI

  • Size

    2.0MB

  • Sample

    240508-24w5pacf3x

  • MD5

    901fbe1c5cc2db631a161934d8d99d50

  • SHA1

    e20b4d855565e2ddfc3a2539b2f9f5fd7c4e2db1

  • SHA256

    b2185c361a34047ea2587852d1a89cd5c51c01ba33a71854f2ca8b105cbcdd06

  • SHA512

    62d6556f347efa2c79ecb446e9f6e6602c0c083105573593d30073eab86d7e01e7e6e8b74dc45b319910f85146b98d8b244dfa31e0e0e261c6ea7e40e4e9486d

  • SSDEEP

    49152:WFUcx88PWPOpX0SFT/8+nXFF3eHShOLbFk5pBKIXT3Y1PZMyGc:W+K88uPCH5HXjOHSIL65pBKIDyMyGc

Score
7/10

Malware Config

Targets

    • Target

      901fbe1c5cc2db631a161934d8d99d50_NEIKI

    • Size

      2.0MB

    • MD5

      901fbe1c5cc2db631a161934d8d99d50

    • SHA1

      e20b4d855565e2ddfc3a2539b2f9f5fd7c4e2db1

    • SHA256

      b2185c361a34047ea2587852d1a89cd5c51c01ba33a71854f2ca8b105cbcdd06

    • SHA512

      62d6556f347efa2c79ecb446e9f6e6602c0c083105573593d30073eab86d7e01e7e6e8b74dc45b319910f85146b98d8b244dfa31e0e0e261c6ea7e40e4e9486d

    • SSDEEP

      49152:WFUcx88PWPOpX0SFT/8+nXFF3eHShOLbFk5pBKIXT3Y1PZMyGc:W+K88uPCH5HXjOHSIL65pBKIDyMyGc

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks