74357c8b3f9fc49011e4b15993eb5497fc97d74a99a60469e9c9a0ceddc8e02c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b19b42d5a60ff31759080ed35c9efb80_NeikiAnalytics
Size

95KB
Sample

240511-n2c25seg8s
MD5

b19b42d5a60ff31759080ed35c9efb80
SHA1

a183add0a42c50a9f221032af6770c1915537f18
SHA256

74357c8b3f9fc49011e4b15993eb5497fc97d74a99a60469e9c9a0ceddc8e02c
SHA512

ddafb1e8666c14955436b8bdd5fffacbfc760c506788a504ab0fdcedf742bd509744b791ca7a0f146f18cb1ac80d6596ff58c17fdcb5fc453c43e612d3f55587
SSDEEP

1536:AEsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbEYTjipvF2G4ezi:AEjot7UQLtdgI2MyzNORQtOflIwoHNVs

Score

7^/10

Malware Config

Targets

- Target
  
  b19b42d5a60ff31759080ed35c9efb80_NeikiAnalytics
- Size
  
  95KB
- MD5
  
  b19b42d5a60ff31759080ed35c9efb80
- SHA1
  
  a183add0a42c50a9f221032af6770c1915537f18
- SHA256
  
  74357c8b3f9fc49011e4b15993eb5497fc97d74a99a60469e9c9a0ceddc8e02c
- SHA512
  
  ddafb1e8666c14955436b8bdd5fffacbfc760c506788a504ab0fdcedf742bd509744b791ca7a0f146f18cb1ac80d6596ff58c17fdcb5fc453c43e612d3f55587
- SSDEEP
  
  1536:AEsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbEYTjipvF2G4ezi:AEjot7UQLtdgI2MyzNORQtOflIwoHNVs
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2