6d85d0398dda7ee9b6c1c2daa14dddf5a06008796d0fe64c3a05d79d984b61be | Triage

Sharing

General

Target

23e17122345af0e88d373f01dde0f8c0_NeikiAnalytics
Size

41KB
Sample

240509-nmjw5shg95
MD5

23e17122345af0e88d373f01dde0f8c0
SHA1

8955110c03f5789f6f391b7eda13cb978158e80b
SHA256

6d85d0398dda7ee9b6c1c2daa14dddf5a06008796d0fe64c3a05d79d984b61be
SHA512

085136d2c565ef20d23f45d95effb15364063df094a99869df66b553882a058ab581ab3dc368c7a812e23bd3eb2f34a8cbed478aebfeca9beec281b088d66755
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAy:bCDOw9aMDooc+vAy

Score

7^/10

Malware Config

Targets

- Target
  
  23e17122345af0e88d373f01dde0f8c0_NeikiAnalytics
- Size
  
  41KB
- MD5
  
  23e17122345af0e88d373f01dde0f8c0
- SHA1
  
  8955110c03f5789f6f391b7eda13cb978158e80b
- SHA256
  
  6d85d0398dda7ee9b6c1c2daa14dddf5a06008796d0fe64c3a05d79d984b61be
- SHA512
  
  085136d2c565ef20d23f45d95effb15364063df094a99869df66b553882a058ab581ab3dc368c7a812e23bd3eb2f34a8cbed478aebfeca9beec281b088d66755
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAy:bCDOw9aMDooc+vAy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2