43e2b4d1ccc89e2f14045a3b81fbcb09ea2d2ec2a4bf2b4bc6c9bb27659ed08c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

002481ef8476241ee525ad76e9d0bdc0_NeikiAnalytics
Size

119KB
Sample

240511-n7hvksfb2t
MD5

002481ef8476241ee525ad76e9d0bdc0
SHA1

f9d76a9974d4cc2f8356f611de987ef9fa1e65d8
SHA256

43e2b4d1ccc89e2f14045a3b81fbcb09ea2d2ec2a4bf2b4bc6c9bb27659ed08c
SHA512

8a7122456ae03ff404ffd3d298854a9302ff034fe0cc25860654f414972dae0f2d4adb1f2ce4c429bf014f3ffa5efb62e7e2ff732a7c9a5c62fd5960e9218944
SSDEEP

1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfci:EfMNE1JG6XMk27EbpOthl0ZUed0i

Score

7^/10

Malware Config

Targets

- Target
  
  002481ef8476241ee525ad76e9d0bdc0_NeikiAnalytics
- Size
  
  119KB
- MD5
  
  002481ef8476241ee525ad76e9d0bdc0
- SHA1
  
  f9d76a9974d4cc2f8356f611de987ef9fa1e65d8
- SHA256
  
  43e2b4d1ccc89e2f14045a3b81fbcb09ea2d2ec2a4bf2b4bc6c9bb27659ed08c
- SHA512
  
  8a7122456ae03ff404ffd3d298854a9302ff034fe0cc25860654f414972dae0f2d4adb1f2ce4c429bf014f3ffa5efb62e7e2ff732a7c9a5c62fd5960e9218944
- SSDEEP
  
  1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfci:EfMNE1JG6XMk27EbpOthl0ZUed0i
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2