General

  • Target

    b41dedd1c619a76379060183bd5579e0_NeikiAnalytics

  • Size

    336KB

  • Sample

    240513-m53ljabe21

  • MD5

    b41dedd1c619a76379060183bd5579e0

  • SHA1

    95176e77d38edbdeea1b25022b3214c56d65aef0

  • SHA256

    1001beaede8d4b572659c403db6ead336534b3aa148d77c3454fb4b198a41cb0

  • SHA512

    aa2fe5cb302161b7da5e034ceb00250cd6967cdac555e5c163ecc86488113dfaae9ae19b67e53c0f357eb2fdfa84dff372997bce16c5a42f2f5bf3e6cd123b89

  • SSDEEP

    6144:VYXBpYGCleWt3LFCmwg1HGTs7mObLLWtXi3THW1:VOd+mTs7lLLuXiU

Score
10/10

Malware Config

Targets

    • Target

      b41dedd1c619a76379060183bd5579e0_NeikiAnalytics

    • Size

      336KB

    • MD5

      b41dedd1c619a76379060183bd5579e0

    • SHA1

      95176e77d38edbdeea1b25022b3214c56d65aef0

    • SHA256

      1001beaede8d4b572659c403db6ead336534b3aa148d77c3454fb4b198a41cb0

    • SHA512

      aa2fe5cb302161b7da5e034ceb00250cd6967cdac555e5c163ecc86488113dfaae9ae19b67e53c0f357eb2fdfa84dff372997bce16c5a42f2f5bf3e6cd123b89

    • SSDEEP

      6144:VYXBpYGCleWt3LFCmwg1HGTs7mObLLWtXi3THW1:VOd+mTs7lLLuXiU

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks