5a48ad3b8c2158d82b285db5daff56bf367cd72b9e09f91ebb9e1d5c717c416d | Triage

Sharing

General

Target

8c624074b0191e4f7ace8a4783bec710_NeikiAnalytics
Size

224KB
Sample

240511-gh8ldagg7w
MD5

8c624074b0191e4f7ace8a4783bec710
SHA1

ad038aa8294a37eca357c274edd441568fd9b60d
SHA256

5a48ad3b8c2158d82b285db5daff56bf367cd72b9e09f91ebb9e1d5c717c416d
SHA512

676bc6db5ed85351ec78ae27b97366f0f0997f86b64ef32e856c5c4a5ee9958d0ceea2dd91e7def5d83c73a0f535a4c6b65e0dc9669d30633cee087a993dd3f2
SSDEEP

3072:GDRKhgB6FhCjG8G3GbGVGBGfGuGxGWYcrf6Kadk:GDghgOAYcD6Kad

Score

7^/10

Malware Config

Targets

- Target
  
  8c624074b0191e4f7ace8a4783bec710_NeikiAnalytics
- Size
  
  224KB
- MD5
  
  8c624074b0191e4f7ace8a4783bec710
- SHA1
  
  ad038aa8294a37eca357c274edd441568fd9b60d
- SHA256
  
  5a48ad3b8c2158d82b285db5daff56bf367cd72b9e09f91ebb9e1d5c717c416d
- SHA512
  
  676bc6db5ed85351ec78ae27b97366f0f0997f86b64ef32e856c5c4a5ee9958d0ceea2dd91e7def5d83c73a0f535a4c6b65e0dc9669d30633cee087a993dd3f2
- SSDEEP
  
  3072:GDRKhgB6FhCjG8G3GbGVGBGfGuGxGWYcrf6Kadk:GDghgOAYcD6Kad
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2