fa6194fc58206b266710e7c61ebb075a825783f4faac73cd9ae33382418fb06d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e8ba979692b82dfc60beb4294518bc0_NeikiAnalytics
Size

1.6MB
Sample

240510-tt7jnsee8x
MD5

1e8ba979692b82dfc60beb4294518bc0
SHA1

8666f06e44f459368c598ca36a999e4bad33cc78
SHA256

fa6194fc58206b266710e7c61ebb075a825783f4faac73cd9ae33382418fb06d
SHA512

ca2bb583ad354fd433b056228c159f531a172bd3877d355d136bdff91701d8c30cc55c5ea8ac34437ca2abaef044b061eab2f9e2f66296830d4fdfb5744fdb57
SSDEEP

24576:18+KpPiPE/mN/yhYqnbBkH2DG+d/L2D5nC4FsrBKHEGM6N8HrnYuXgS4xs78aPu+:GD+N/ybqwGGaD5npVSLYV7aPu+VS12L

Score

7^/10

Malware Config

Targets

- Target
  
  1e8ba979692b82dfc60beb4294518bc0_NeikiAnalytics
- Size
  
  1.6MB
- MD5
  
  1e8ba979692b82dfc60beb4294518bc0
- SHA1
  
  8666f06e44f459368c598ca36a999e4bad33cc78
- SHA256
  
  fa6194fc58206b266710e7c61ebb075a825783f4faac73cd9ae33382418fb06d
- SHA512
  
  ca2bb583ad354fd433b056228c159f531a172bd3877d355d136bdff91701d8c30cc55c5ea8ac34437ca2abaef044b061eab2f9e2f66296830d4fdfb5744fdb57
- SSDEEP
  
  24576:18+KpPiPE/mN/yhYqnbBkH2DG+d/L2D5nC4FsrBKHEGM6N8HrnYuXgS4xs78aPu+:GD+N/ybqwGGaD5npVSLYV7aPu+VS12L
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2