4370c4ce9d10de6a3838087aaaa32962ed41952c3331d35b5940793a51805781 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb8bae8182746b551af78f09613dd730_NeikiAnalytics
Size

5.5MB
Sample

240509-wwj79sah24
MD5

bb8bae8182746b551af78f09613dd730
SHA1

c783a3ea778db184bb6d88b159cfb0ef0a47f24c
SHA256

4370c4ce9d10de6a3838087aaaa32962ed41952c3331d35b5940793a51805781
SHA512

291ba70563bb04b4b6d50ce672f9ced6e37bf9147853ef6318f7e636d4c9a6dbfffea42e56b2041c7d330490bfc152787c89e21b94bf133cdfffd69ce6674b83
SSDEEP

98304:te0kTj5hfEKsu8zz5RQ2zeCtbNKGtYU2+7LC5jpIsOsO9XLWiyy8:0j54z5WO/t/2+7IF6Byy8

Score

7^/10

Malware Config

Targets

- Target
  
  bb8bae8182746b551af78f09613dd730_NeikiAnalytics
- Size
  
  5.5MB
- MD5
  
  bb8bae8182746b551af78f09613dd730
- SHA1
  
  c783a3ea778db184bb6d88b159cfb0ef0a47f24c
- SHA256
  
  4370c4ce9d10de6a3838087aaaa32962ed41952c3331d35b5940793a51805781
- SHA512
  
  291ba70563bb04b4b6d50ce672f9ced6e37bf9147853ef6318f7e636d4c9a6dbfffea42e56b2041c7d330490bfc152787c89e21b94bf133cdfffd69ce6674b83
- SSDEEP
  
  98304:te0kTj5hfEKsu8zz5RQ2zeCtbNKGtYU2+7LC5jpIsOsO9XLWiyy8:0j54z5WO/t/2+7IF6Byy8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2