6ac8cf909c96a2ae5c37167761f6d9cbceb4c34b1f435f33768a281c3fc94131 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1da97e8bc70d737685414cefbc077340_NeikiAnalytics
Size

91KB
Sample

240512-rv44tsdf33
MD5

1da97e8bc70d737685414cefbc077340
SHA1

8380b8b4f1879289980fbba6285029543e3337ed
SHA256

6ac8cf909c96a2ae5c37167761f6d9cbceb4c34b1f435f33768a281c3fc94131
SHA512

92299c6af71587a442101e7b5859ed0064426a07f82085cf0913508c032802ea40ac329ed35019ccd1b201351e458f4793cdc59fe2e47b3b88289f2069a71f99
SSDEEP

768:EsJhM/47dTkc8jmiG/7H1SE3KGdA6jVS2bnKHtIGA8/nVNEcoX7zPjqEifbGLPgM:EAA4R43e/7VOEjs2FRP2E6bqgJ6JZTR

Score

7^/10

Malware Config

Targets

- Target
  
  1da97e8bc70d737685414cefbc077340_NeikiAnalytics
- Size
  
  91KB
- MD5
  
  1da97e8bc70d737685414cefbc077340
- SHA1
  
  8380b8b4f1879289980fbba6285029543e3337ed
- SHA256
  
  6ac8cf909c96a2ae5c37167761f6d9cbceb4c34b1f435f33768a281c3fc94131
- SHA512
  
  92299c6af71587a442101e7b5859ed0064426a07f82085cf0913508c032802ea40ac329ed35019ccd1b201351e458f4793cdc59fe2e47b3b88289f2069a71f99
- SSDEEP
  
  768:EsJhM/47dTkc8jmiG/7H1SE3KGdA6jVS2bnKHtIGA8/nVNEcoX7zPjqEifbGLPgM:EAA4R43e/7VOEjs2FRP2E6bqgJ6JZTR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2