db79bcc78d6c42610da348bd5013d4205fc5740c03a602746b2fd8f92dfaa8b3 | Triage

Sharing

General

Target

9babba00d2624be5686953240490b770_NeikiAnalytics
Size

53KB
Sample

240511-h2an5ach7v
MD5

9babba00d2624be5686953240490b770
SHA1

905ba090ffae1697b074b6a21f2e1ab48cff2692
SHA256

db79bcc78d6c42610da348bd5013d4205fc5740c03a602746b2fd8f92dfaa8b3
SHA512

336ff8162e8b19465b19cf4f2d521e8a0742e71e0b8143b7ae6c12ad6ff94b288748227ccda4b0d680f2e50baeb6e3a8e71c30a73ed0f5569c90a373ebbd9b08
SSDEEP

768:MApQr0fvdFJI341GxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7Zb58:MAaMJlBsh7pWezEPJB+Olb58

Score

7^/10

Malware Config

Targets

- Target
  
  9babba00d2624be5686953240490b770_NeikiAnalytics
- Size
  
  53KB
- MD5
  
  9babba00d2624be5686953240490b770
- SHA1
  
  905ba090ffae1697b074b6a21f2e1ab48cff2692
- SHA256
  
  db79bcc78d6c42610da348bd5013d4205fc5740c03a602746b2fd8f92dfaa8b3
- SHA512
  
  336ff8162e8b19465b19cf4f2d521e8a0742e71e0b8143b7ae6c12ad6ff94b288748227ccda4b0d680f2e50baeb6e3a8e71c30a73ed0f5569c90a373ebbd9b08
- SSDEEP
  
  768:MApQr0fvdFJI341GxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7Zb58:MAaMJlBsh7pWezEPJB+Olb58
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2