311dfc1e29fbaf7cc087998bedcae9449ff76dada180c5b447c872e552daa759 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

077f97ac950b46ea3274909498a5b850_NeikiAnalytics
Size

27KB
Sample

240511-qfzecscb72
MD5

077f97ac950b46ea3274909498a5b850
SHA1

05148370d96d1bd76d3f793873566cb5d20b9ab0
SHA256

311dfc1e29fbaf7cc087998bedcae9449ff76dada180c5b447c872e552daa759
SHA512

a9337b91302287820dc3217834dccf567c56fa553006408f63dc9151a9f8ac168442cb11b6b8c32d6b28aa365f940d7cf00f627f553f32bebfc660249c0816bc
SSDEEP

384:uhLCP1R8XnzvuwT0pZwBeH7lQDizU11u54TV0LT9R:cCcvuwU6eHhQDi41U4TGLT9R

Score

7^/10

Malware Config

Targets

- Target
  
  077f97ac950b46ea3274909498a5b850_NeikiAnalytics
- Size
  
  27KB
- MD5
  
  077f97ac950b46ea3274909498a5b850
- SHA1
  
  05148370d96d1bd76d3f793873566cb5d20b9ab0
- SHA256
  
  311dfc1e29fbaf7cc087998bedcae9449ff76dada180c5b447c872e552daa759
- SHA512
  
  a9337b91302287820dc3217834dccf567c56fa553006408f63dc9151a9f8ac168442cb11b6b8c32d6b28aa365f940d7cf00f627f553f32bebfc660249c0816bc
- SSDEEP
  
  384:uhLCP1R8XnzvuwT0pZwBeH7lQDizU11u54TV0LT9R:cCcvuwU6eHhQDi41U4TGLT9R
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2