cf817c9798297a3bd7d7a7504485f28fe8cab862797fc5fad8393b708c1a5c51 | Triage

Sharing

General

Target

db466b068b64c9e66ef1ace0a12f73d0_NeikiAnalytics
Size

15KB
Sample

240510-pad1ssdc9t
MD5

db466b068b64c9e66ef1ace0a12f73d0
SHA1

ac0f630486dcfa2f482de83af093746acf7f641d
SHA256

cf817c9798297a3bd7d7a7504485f28fe8cab862797fc5fad8393b708c1a5c51
SHA512

754032c8010d7a6e11ec02581d2a6c39327cd75a50e35a1ff7a2992eb72f4bb9e06ce16262a37e32666b8e91b8afb7cc16e9769df72db6b47f82bf8b00075dec
SSDEEP

192:5SN0JkITWQJRkHTsNojx3+PXaiYCZ6lbmX1hgQSXhlspmqG:2ITWBHTJd3EIMMbmzg1Xhlua

Score

7^/10

Malware Config

Targets

- Target
  
  db466b068b64c9e66ef1ace0a12f73d0_NeikiAnalytics
- Size
  
  15KB
- MD5
  
  db466b068b64c9e66ef1ace0a12f73d0
- SHA1
  
  ac0f630486dcfa2f482de83af093746acf7f641d
- SHA256
  
  cf817c9798297a3bd7d7a7504485f28fe8cab862797fc5fad8393b708c1a5c51
- SHA512
  
  754032c8010d7a6e11ec02581d2a6c39327cd75a50e35a1ff7a2992eb72f4bb9e06ce16262a37e32666b8e91b8afb7cc16e9769df72db6b47f82bf8b00075dec
- SSDEEP
  
  192:5SN0JkITWQJRkHTsNojx3+PXaiYCZ6lbmX1hgQSXhlspmqG:2ITWBHTJd3EIMMbmzg1Xhlua
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2