d236193a39af3b3f02842c986d3fe77a79765349901776af8055fcb753c5b30c | Triage

Sharing

General

Target

048011e1512e1643957db0df939f1f40_NEIKI
Size

90KB
Sample

240509-ka84qaha6t
MD5

048011e1512e1643957db0df939f1f40
SHA1

8c5b8c1f2ebd7e685e77135a3df3a19f4ab6c88e
SHA256

d236193a39af3b3f02842c986d3fe77a79765349901776af8055fcb753c5b30c
SHA512

73b1ba6deda41cbfed4cc7ebcba8e7a4720ee45c1731dd89b720334ca571e76bd98bd0412d57e737462397119716c4a9a88976ed0d55d789593907887c106b53
SSDEEP

1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+lp:Z5MaVVnLA0WLM0Uvh6kd+lp

Score

7^/10

Malware Config

Targets

- Target
  
  048011e1512e1643957db0df939f1f40_NEIKI
- Size
  
  90KB
- MD5
  
  048011e1512e1643957db0df939f1f40
- SHA1
  
  8c5b8c1f2ebd7e685e77135a3df3a19f4ab6c88e
- SHA256
  
  d236193a39af3b3f02842c986d3fe77a79765349901776af8055fcb753c5b30c
- SHA512
  
  73b1ba6deda41cbfed4cc7ebcba8e7a4720ee45c1731dd89b720334ca571e76bd98bd0412d57e737462397119716c4a9a88976ed0d55d789593907887c106b53
- SSDEEP
  
  1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+lp:Z5MaVVnLA0WLM0Uvh6kd+lp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2