32d1a2c9cdc463fb71c108fad0f43a71742a02ea916fc28f6d6c9f6b1cdf4f6c | Triage

Sharing

General

Target

24bd809bbcc3d40d9cb4c101a5df8810_NeikiAnalytics
Size

33KB
Sample

240510-t8c9dafc9z
MD5

24bd809bbcc3d40d9cb4c101a5df8810
SHA1

f4f897fda2e18be3e698c3d1a0062f60cf2ff5a2
SHA256

32d1a2c9cdc463fb71c108fad0f43a71742a02ea916fc28f6d6c9f6b1cdf4f6c
SHA512

21fe828d358966c2390032916fb4cfef1c7c67b41ecbd9a5e276110605620e64072e472625778eab1bebb75766a91bf3d2a179e0a405c0bb6664026f0753aa22
SSDEEP

384:6YwzAbTtITikpqIoxO6kA35c6ubEAPTCYeZF7BIzD+QBvRV4sQ/:yAHt0Vu5Imb7QSQNK

Score

7^/10

Malware Config

Targets

- Target
  
  24bd809bbcc3d40d9cb4c101a5df8810_NeikiAnalytics
- Size
  
  33KB
- MD5
  
  24bd809bbcc3d40d9cb4c101a5df8810
- SHA1
  
  f4f897fda2e18be3e698c3d1a0062f60cf2ff5a2
- SHA256
  
  32d1a2c9cdc463fb71c108fad0f43a71742a02ea916fc28f6d6c9f6b1cdf4f6c
- SHA512
  
  21fe828d358966c2390032916fb4cfef1c7c67b41ecbd9a5e276110605620e64072e472625778eab1bebb75766a91bf3d2a179e0a405c0bb6664026f0753aa22
- SSDEEP
  
  384:6YwzAbTtITikpqIoxO6kA35c6ubEAPTCYeZF7BIzD+QBvRV4sQ/:yAHt0Vu5Imb7QSQNK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2