4f0ab1e6278aaa9f31a28d8043898ef9ee4578580350228ec2efe4ef61244418 | Triage

Sharing

General

Target

a318b73d14ce9e5cd9a4f9509e012ba0_NeikiAnalytics
Size

51KB
Sample

240511-jq8bpaeg8v
MD5

a318b73d14ce9e5cd9a4f9509e012ba0
SHA1

0f7e58d8875a8bb7a54db4b9cf286eb6b0cc350e
SHA256

4f0ab1e6278aaa9f31a28d8043898ef9ee4578580350228ec2efe4ef61244418
SHA512

27fea7704290181fd623d44558a50d2dcd0456af2b3c4cde07e81cf75f86bdd162cbe3c72d84accfdb74c8ee68fe128b566e6bf2092a75ad6788f34f5c1a0ac3
SSDEEP

384:kguzjEChqLcBsFNQiviL//U8fYpDcrfiTfEvkx76lc7AgWy9EwMt7CKAIINk:klAL/vW//pfsfn76OAASCKAIINk

Score

7^/10

Malware Config

Targets

- Target
  
  a318b73d14ce9e5cd9a4f9509e012ba0_NeikiAnalytics
- Size
  
  51KB
- MD5
  
  a318b73d14ce9e5cd9a4f9509e012ba0
- SHA1
  
  0f7e58d8875a8bb7a54db4b9cf286eb6b0cc350e
- SHA256
  
  4f0ab1e6278aaa9f31a28d8043898ef9ee4578580350228ec2efe4ef61244418
- SHA512
  
  27fea7704290181fd623d44558a50d2dcd0456af2b3c4cde07e81cf75f86bdd162cbe3c72d84accfdb74c8ee68fe128b566e6bf2092a75ad6788f34f5c1a0ac3
- SSDEEP
  
  384:kguzjEChqLcBsFNQiviL//U8fYpDcrfiTfEvkx76lc7AgWy9EwMt7CKAIINk:klAL/vW//pfsfn76OAASCKAIINk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2