ff63c92969fd3b760f105c8171f27c2e514280473486187acba7be63c3c6cfd1 | Triage

Sharing

General

Target

4b8256fe73c813408292f8da1afedac0_NeikiAnalytics
Size

34KB
Sample

240509-qzyxyacd7t
MD5

4b8256fe73c813408292f8da1afedac0
SHA1

03679fd9cd614df782bb02eb646ca9a9b3884293
SHA256

ff63c92969fd3b760f105c8171f27c2e514280473486187acba7be63c3c6cfd1
SHA512

70be5e30553b6be6ea05a1b56787d08d05303a016ef965c3fb9a75e46e87b6df4b35b2c112e4853864fd4521ab29d4b177f29fab783f44bf6f7914833b0afd6a
SSDEEP

768:AGMK5/+4HOj1TStcXu105gEJQhyG+YOFd:HZ5/+kOj1TLvJQhyeOFd

Score

7^/10

Malware Config

Targets

- Target
  
  4b8256fe73c813408292f8da1afedac0_NeikiAnalytics
- Size
  
  34KB
- MD5
  
  4b8256fe73c813408292f8da1afedac0
- SHA1
  
  03679fd9cd614df782bb02eb646ca9a9b3884293
- SHA256
  
  ff63c92969fd3b760f105c8171f27c2e514280473486187acba7be63c3c6cfd1
- SHA512
  
  70be5e30553b6be6ea05a1b56787d08d05303a016ef965c3fb9a75e46e87b6df4b35b2c112e4853864fd4521ab29d4b177f29fab783f44bf6f7914833b0afd6a
- SSDEEP
  
  768:AGMK5/+4HOj1TStcXu105gEJQhyG+YOFd:HZ5/+kOj1TLvJQhyeOFd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2