50d4c335565769521a8c4bcfa6cc772695ff4e16274b04facf01d44c5810d478 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ece2ce892d1d59c1ebde0c0a8c32ef0_NeikiAnalytics
Size

11KB
Sample

240512-jkknfaad72
MD5

7ece2ce892d1d59c1ebde0c0a8c32ef0
SHA1

582ec6db07a4c3f85e8ba022903b7d4b63853ed0
SHA256

50d4c335565769521a8c4bcfa6cc772695ff4e16274b04facf01d44c5810d478
SHA512

6a37eed58f17ae8bd9b7b5be5a60ef71371475caf7a2394732e620118f9c9fcac903c4171fd799560223712557b31ce918f28212f17b9ff1dc4a3352589cb540
SSDEEP

192:lHFwFITsYHSYHhL3k5t4dLpxuG/ro3oCOj7:llwFITlhY5qdCQro3oCOH

Score

7^/10

Malware Config

Targets

- Target
  
  7ece2ce892d1d59c1ebde0c0a8c32ef0_NeikiAnalytics
- Size
  
  11KB
- MD5
  
  7ece2ce892d1d59c1ebde0c0a8c32ef0
- SHA1
  
  582ec6db07a4c3f85e8ba022903b7d4b63853ed0
- SHA256
  
  50d4c335565769521a8c4bcfa6cc772695ff4e16274b04facf01d44c5810d478
- SHA512
  
  6a37eed58f17ae8bd9b7b5be5a60ef71371475caf7a2394732e620118f9c9fcac903c4171fd799560223712557b31ce918f28212f17b9ff1dc4a3352589cb540
- SSDEEP
  
  192:lHFwFITsYHSYHhL3k5t4dLpxuG/ro3oCOj7:llwFITlhY5qdCQro3oCOH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2