6c1b2fb1881437f2c054584716954962d4c1369e1a75a698b0a1c671cdd10b6d | Triage

Sharing

General

Target

44926bc527bd1db391395c650802ff60_NeikiAnalytics
Size

416KB
Sample

240510-cd5lpscc7z
MD5

44926bc527bd1db391395c650802ff60
SHA1

4b28d00e3ab94fb31bf92d0d3803ca451040f637
SHA256

6c1b2fb1881437f2c054584716954962d4c1369e1a75a698b0a1c671cdd10b6d
SHA512

81e9c1b4ddc2a56fa7c479c52f776c959924a52ba230930cff60169cc7b8cb1817089f7069bf78ca2ded83efe740e30796f9888af891874079aaabc39b38a0ab
SSDEEP

6144:BjAKmEGlZyjQmTB7v9MXzzjtBzmMG0CqCUCpeexq37IWV+5cSciVRGNSkN1HReAh:nVkojZTBv9AKM2p+UWwqpmmSkvHRdl

Score

7^/10

Malware Config

Targets

- Target
  
  44926bc527bd1db391395c650802ff60_NeikiAnalytics
- Size
  
  416KB
- MD5
  
  44926bc527bd1db391395c650802ff60
- SHA1
  
  4b28d00e3ab94fb31bf92d0d3803ca451040f637
- SHA256
  
  6c1b2fb1881437f2c054584716954962d4c1369e1a75a698b0a1c671cdd10b6d
- SHA512
  
  81e9c1b4ddc2a56fa7c479c52f776c959924a52ba230930cff60169cc7b8cb1817089f7069bf78ca2ded83efe740e30796f9888af891874079aaabc39b38a0ab
- SSDEEP
  
  6144:BjAKmEGlZyjQmTB7v9MXzzjtBzmMG0CqCUCpeexq37IWV+5cSciVRGNSkN1HReAh:nVkojZTBv9AKM2p+UWwqpmmSkvHRdl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2