582ce3baaeb21085ad885c3c731d6c227e8d80fe51ed39d1d5d413a5d95e2310 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f369c0c2f1f345c8b7980a615518640_NeikiAnalytics
Size

38KB
Sample

240510-d5rplabh32
MD5

5f369c0c2f1f345c8b7980a615518640
SHA1

62fe87f4ceb32f2d7f14e4f5e38369bc567599e6
SHA256

582ce3baaeb21085ad885c3c731d6c227e8d80fe51ed39d1d5d413a5d95e2310
SHA512

d662b76242aff43a65b7db2d69c1c801acf0fede93d308872e23a445e4747dcba7c9e4fbe46b1371f499eea881d87e04d72ef5d9b2ccfd982f55bcda73ed8b63
SSDEEP

768:JybDkdsqw8guzZFcWiVEaByckWiVECtu1MJXOs26nGMAc:JGMG8tz3cFE2kFECDzgc

Score

7^/10

Malware Config

Targets

- Target
  
  5f369c0c2f1f345c8b7980a615518640_NeikiAnalytics
- Size
  
  38KB
- MD5
  
  5f369c0c2f1f345c8b7980a615518640
- SHA1
  
  62fe87f4ceb32f2d7f14e4f5e38369bc567599e6
- SHA256
  
  582ce3baaeb21085ad885c3c731d6c227e8d80fe51ed39d1d5d413a5d95e2310
- SHA512
  
  d662b76242aff43a65b7db2d69c1c801acf0fede93d308872e23a445e4747dcba7c9e4fbe46b1371f499eea881d87e04d72ef5d9b2ccfd982f55bcda73ed8b63
- SSDEEP
  
  768:JybDkdsqw8guzZFcWiVEaByckWiVECtu1MJXOs26nGMAc:JGMG8tz3cFE2kFECDzgc
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2