General

  • Target

    a617f4f8533e5f1e300939e360542f70_NeikiAnalytics

  • Size

    204KB

  • Sample

    240513-jc2xrace3s

  • MD5

    a617f4f8533e5f1e300939e360542f70

  • SHA1

    878005ebd3949e408378b1e4cb0cd766eadcda32

  • SHA256

    850ed348ca8b78c3ea8645219131417da4c4ca27de32e8ed9787d0234643b23d

  • SHA512

    07cae9a45e082a1972041e83a7726067145f9a15b16bfadf10fe899e9b9c1e9d27efa87ba5633f9c59b034b3765e9dabdabc71c4bd199470b0f4228f37e1d3dc

  • SSDEEP

    3072:jmmW8F0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWlX:Cre4QxL7B9W0c1RCzR/fSmlU

Score
10/10

Malware Config

Targets

    • Target

      a617f4f8533e5f1e300939e360542f70_NeikiAnalytics

    • Size

      204KB

    • MD5

      a617f4f8533e5f1e300939e360542f70

    • SHA1

      878005ebd3949e408378b1e4cb0cd766eadcda32

    • SHA256

      850ed348ca8b78c3ea8645219131417da4c4ca27de32e8ed9787d0234643b23d

    • SHA512

      07cae9a45e082a1972041e83a7726067145f9a15b16bfadf10fe899e9b9c1e9d27efa87ba5633f9c59b034b3765e9dabdabc71c4bd199470b0f4228f37e1d3dc

    • SSDEEP

      3072:jmmW8F0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWlX:Cre4QxL7B9W0c1RCzR/fSmlU

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks