d9084242f673cfe57fb2e8c9245a450ca9e50915c90ebf216384b1dca31f9a37 | Triage

Sharing

General

Target

7b443b8f64de4145923bf413fe3a15c0_NeikiAnalytics
Size

71KB
Sample

240509-tad31shh2w
MD5

7b443b8f64de4145923bf413fe3a15c0
SHA1

b18f907780198a153360cca8dff4a50b148422e6
SHA256

d9084242f673cfe57fb2e8c9245a450ca9e50915c90ebf216384b1dca31f9a37
SHA512

d970268561f67786dd44f7201f9dbf4f6939f0b891f4823c68de32cacd0ff7ac11c30a34d6d606ba0efb86f26c70c2b8ce719dbbbc30e8ab3addd64df564eb7b
SSDEEP

384:MdPnITsHlTxk7ETVAyPyAtatgTkeI8rlHfuDLLfFGY2rXdSkxzyuafqr9KpteyNK:MdAT05xk7HKQ8xccJjIVqrzyuX

Score

7^/10

Malware Config

Targets

- Target
  
  7b443b8f64de4145923bf413fe3a15c0_NeikiAnalytics
- Size
  
  71KB
- MD5
  
  7b443b8f64de4145923bf413fe3a15c0
- SHA1
  
  b18f907780198a153360cca8dff4a50b148422e6
- SHA256
  
  d9084242f673cfe57fb2e8c9245a450ca9e50915c90ebf216384b1dca31f9a37
- SHA512
  
  d970268561f67786dd44f7201f9dbf4f6939f0b891f4823c68de32cacd0ff7ac11c30a34d6d606ba0efb86f26c70c2b8ce719dbbbc30e8ab3addd64df564eb7b
- SSDEEP
  
  384:MdPnITsHlTxk7ETVAyPyAtatgTkeI8rlHfuDLLfFGY2rXdSkxzyuafqr9KpteyNK:MdAT05xk7HKQ8xccJjIVqrzyuX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2