e698991268f94b5b3338126464df6c937eb78ad22c62ac9df5a5c44a151a53bc | Triage

Sharing

General

Target

1c33c8e96fa66c155aa5146c5c259720_NeikiAnalytics
Size

86KB
Sample

240512-rn38ysdc49
MD5

1c33c8e96fa66c155aa5146c5c259720
SHA1

71099e052eaf2538e6d382821e41f27447d27cd8
SHA256

e698991268f94b5b3338126464df6c937eb78ad22c62ac9df5a5c44a151a53bc
SHA512

6ab460f9d1bb7e4bb5bb8e3a75eab01a6067c6f5f993c6709a395f27f4b243d173a4b79edd33e4bd9447ba03ee521d3ead2da7cc880deb39bfc9e353c0d948ee
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBUw:vCjsIOtEvwDpj5H9YvQd27

Score

7^/10

Malware Config

Targets

- Target
  
  1c33c8e96fa66c155aa5146c5c259720_NeikiAnalytics
- Size
  
  86KB
- MD5
  
  1c33c8e96fa66c155aa5146c5c259720
- SHA1
  
  71099e052eaf2538e6d382821e41f27447d27cd8
- SHA256
  
  e698991268f94b5b3338126464df6c937eb78ad22c62ac9df5a5c44a151a53bc
- SHA512
  
  6ab460f9d1bb7e4bb5bb8e3a75eab01a6067c6f5f993c6709a395f27f4b243d173a4b79edd33e4bd9447ba03ee521d3ead2da7cc880deb39bfc9e353c0d948ee
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBUw:vCjsIOtEvwDpj5H9YvQd27
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2