d7e9d88503306f8ee6017abffb1783a111fa7c86f3e705445ab013c630df9d1f | Triage

Sharing

General

Target

da6d1b2bed0833317d04a44f3b1c49c0_NeikiAnalytics
Size

87KB
Sample

240509-yascvseb49
MD5

da6d1b2bed0833317d04a44f3b1c49c0
SHA1

a13dcfc1d0a31f9eafee412321982320efebf4b1
SHA256

d7e9d88503306f8ee6017abffb1783a111fa7c86f3e705445ab013c630df9d1f
SHA512

a13d5ddf7ad2e78c9007c1c65c70ab7847ef8520cc9519aff23040df9514901665fae0bc07b2cedbab10e05b200bf0db69ea77248653dedf51fa89ac2130fcdb
SSDEEP

1536:gzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcu:mfMNE1JG6XMk27EbpOthl0ZUed0u

Score

7^/10

Malware Config

Targets

- Target
  
  da6d1b2bed0833317d04a44f3b1c49c0_NeikiAnalytics
- Size
  
  87KB
- MD5
  
  da6d1b2bed0833317d04a44f3b1c49c0
- SHA1
  
  a13dcfc1d0a31f9eafee412321982320efebf4b1
- SHA256
  
  d7e9d88503306f8ee6017abffb1783a111fa7c86f3e705445ab013c630df9d1f
- SHA512
  
  a13d5ddf7ad2e78c9007c1c65c70ab7847ef8520cc9519aff23040df9514901665fae0bc07b2cedbab10e05b200bf0db69ea77248653dedf51fa89ac2130fcdb
- SSDEEP
  
  1536:gzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcu:mfMNE1JG6XMk27EbpOthl0ZUed0u
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2