7d56af92d6b96b60d6411e87dd8660c6c4a4b43a383ba4f173744653265a751d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9f9ef8c8b4b9e3813389df76ea012e0_NeikiAnalytics
Size

5.7MB
Sample

240513-kb2e9sec4x
MD5

a9f9ef8c8b4b9e3813389df76ea012e0
SHA1

3ee02ec5e9365d41b2454b3bac25d28221a8f417
SHA256

7d56af92d6b96b60d6411e87dd8660c6c4a4b43a383ba4f173744653265a751d
SHA512

5859120e69a13e6641c9dff299f3ec3fefe41883df4647cdd085e076c287ce24be95d053311ec1f37bf93277fb260e3b40e3856268d1b216340781f354822f74
SSDEEP

98304:1JStxBeOYrT8jV+slVNp8NtBb/IiXVbdfuphU4jfWoMA0V11//V+:DS3YrT8f8NPbwilbdWphPK007T+

Score

7^/10

Malware Config

Targets

- Target
  
  a9f9ef8c8b4b9e3813389df76ea012e0_NeikiAnalytics
- Size
  
  5.7MB
- MD5
  
  a9f9ef8c8b4b9e3813389df76ea012e0
- SHA1
  
  3ee02ec5e9365d41b2454b3bac25d28221a8f417
- SHA256
  
  7d56af92d6b96b60d6411e87dd8660c6c4a4b43a383ba4f173744653265a751d
- SHA512
  
  5859120e69a13e6641c9dff299f3ec3fefe41883df4647cdd085e076c287ce24be95d053311ec1f37bf93277fb260e3b40e3856268d1b216340781f354822f74
- SSDEEP
  
  98304:1JStxBeOYrT8jV+slVNp8NtBb/IiXVbdfuphU4jfWoMA0V11//V+:DS3YrT8f8NPbwilbdWphPK007T+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2