094fd986d2c0ee6c9a52163ad8f3df3e193e9525b0c34cec422ce138122705cc | Triage

Sharing

General

Target

ab618bb1dbad6d3a54ef744cf2110540_NeikiAnalytics
Size

592KB
Sample

240510-j3ng2sfe87
MD5

ab618bb1dbad6d3a54ef744cf2110540
SHA1

e05744a1672af4aa6b0cd65fa8c25b30ad494734
SHA256

094fd986d2c0ee6c9a52163ad8f3df3e193e9525b0c34cec422ce138122705cc
SHA512

58501f2651e57e2851f554d261eea25f1cd3ef81b060f7c14cada8a61a6f0b58cf99ce10d2ae561b771ee0ce3584892f21d6739f4585f83b58be5f1cc3057d44
SSDEEP

3072:6CaoAs101Pol0xPTM7mRCAdJSSxPUkl3VqMQTCk/dN92sdNhavtrVdewnAx3wmVb:6qDAwl0xPTMiR9JSSxPUKadodH6XhT

Score

7^/10

Malware Config

Targets

- Target
  
  ab618bb1dbad6d3a54ef744cf2110540_NeikiAnalytics
- Size
  
  592KB
- MD5
  
  ab618bb1dbad6d3a54ef744cf2110540
- SHA1
  
  e05744a1672af4aa6b0cd65fa8c25b30ad494734
- SHA256
  
  094fd986d2c0ee6c9a52163ad8f3df3e193e9525b0c34cec422ce138122705cc
- SHA512
  
  58501f2651e57e2851f554d261eea25f1cd3ef81b060f7c14cada8a61a6f0b58cf99ce10d2ae561b771ee0ce3584892f21d6739f4585f83b58be5f1cc3057d44
- SSDEEP
  
  3072:6CaoAs101Pol0xPTM7mRCAdJSSxPUkl3VqMQTCk/dN92sdNhavtrVdewnAx3wmVb:6qDAwl0xPTMiR9JSSxPUKadodH6XhT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2