63007cd9a82540c75429ed69290aeca052030bb04e0f1af7acaa533b4f711785 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

989c72d82d55edd2f26e36a7790ed300_NeikiAnalytics
Size

415KB
Sample

240511-hq9dbacb2v
MD5

989c72d82d55edd2f26e36a7790ed300
SHA1

d5bdb3127057ff192130a118612255bc92ab89d3
SHA256

63007cd9a82540c75429ed69290aeca052030bb04e0f1af7acaa533b4f711785
SHA512

007aec4c7df5ae38ef6811927e295f83078733ff4f1e40665940c5a24e728c80536a10b23d88f6ac9b8485008588915144bdcd2eb041f321b1eff0c69b5cee18
SSDEEP

6144:BjAKmEGlZyjQmTB7v9MXzEjtBzmMi0CqCUCpeexq37IWV+5LKSNgbpvJ/pKna:nVkojZTBv9lKMip+UWw941J/Ua

Score

7^/10

Malware Config

Targets

- Target
  
  989c72d82d55edd2f26e36a7790ed300_NeikiAnalytics
- Size
  
  415KB
- MD5
  
  989c72d82d55edd2f26e36a7790ed300
- SHA1
  
  d5bdb3127057ff192130a118612255bc92ab89d3
- SHA256
  
  63007cd9a82540c75429ed69290aeca052030bb04e0f1af7acaa533b4f711785
- SHA512
  
  007aec4c7df5ae38ef6811927e295f83078733ff4f1e40665940c5a24e728c80536a10b23d88f6ac9b8485008588915144bdcd2eb041f321b1eff0c69b5cee18
- SSDEEP
  
  6144:BjAKmEGlZyjQmTB7v9MXzEjtBzmMi0CqCUCpeexq37IWV+5LKSNgbpvJ/pKna:nVkojZTBv9lKMip+UWw941J/Ua
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2