37386448737870b641369f73ab76a18c8f8535fe5fb4f038dcdda3b47f608c39 | Triage

Sharing

General

Target

a4281c20b778057e213f05a14821ecc0_NeikiAnalytics
Size

81KB
Sample

240510-jh25pseb95
MD5

a4281c20b778057e213f05a14821ecc0
SHA1

775f3e658a317ac6f907f8c29aa7d20d9d6fabbc
SHA256

37386448737870b641369f73ab76a18c8f8535fe5fb4f038dcdda3b47f608c39
SHA512

93c5836b6047c9daf43f07e4fca300397db45f9a6301bc2603139c6882fc763b0f9bb6eefb6cecf22db27cc3563fb31bf793657f08fed3cf86d2c07309c18952
SSDEEP

1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcop:EfMNE1JG6XMk27EbpOthl0ZUed0op

Score

7^/10

Malware Config

Targets

- Target
  
  a4281c20b778057e213f05a14821ecc0_NeikiAnalytics
- Size
  
  81KB
- MD5
  
  a4281c20b778057e213f05a14821ecc0
- SHA1
  
  775f3e658a317ac6f907f8c29aa7d20d9d6fabbc
- SHA256
  
  37386448737870b641369f73ab76a18c8f8535fe5fb4f038dcdda3b47f608c39
- SHA512
  
  93c5836b6047c9daf43f07e4fca300397db45f9a6301bc2603139c6882fc763b0f9bb6eefb6cecf22db27cc3563fb31bf793657f08fed3cf86d2c07309c18952
- SSDEEP
  
  1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcop:EfMNE1JG6XMk27EbpOthl0ZUed0op
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2