e9c78fedd8c8328731d9e8f437a5d9f0f1fa97eb773d20030d0f4756992a6350 | Triage

Sharing

General

Target

3911787dc507bb10604caf4874c52a00_NeikiAnalytics
Size

44KB
Sample

240510-bl2z4sdd94
MD5

3911787dc507bb10604caf4874c52a00
SHA1

e8173204c021d128f09329445f56f9aacaf82087
SHA256

e9c78fedd8c8328731d9e8f437a5d9f0f1fa97eb773d20030d0f4756992a6350
SHA512

216a7ed90e8201258df4424c219c0e1fd375e9e4f608476aeb51f68b6958373020f984a1967150c7d1c4629a98ff9a0ef0ac3bb1005ed082408f8a5bff260f56
SSDEEP

768:xWRR4LiBiapyJJ+2ZXUFGtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGWlk49:x0aiBzpzOXvtdgI2MyzNORQtOflIwoHY

Score

7^/10

Malware Config

Targets

- Target
  
  3911787dc507bb10604caf4874c52a00_NeikiAnalytics
- Size
  
  44KB
- MD5
  
  3911787dc507bb10604caf4874c52a00
- SHA1
  
  e8173204c021d128f09329445f56f9aacaf82087
- SHA256
  
  e9c78fedd8c8328731d9e8f437a5d9f0f1fa97eb773d20030d0f4756992a6350
- SHA512
  
  216a7ed90e8201258df4424c219c0e1fd375e9e4f608476aeb51f68b6958373020f984a1967150c7d1c4629a98ff9a0ef0ac3bb1005ed082408f8a5bff260f56
- SSDEEP
  
  768:xWRR4LiBiapyJJ+2ZXUFGtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGWlk49:x0aiBzpzOXvtdgI2MyzNORQtOflIwoHY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2