7e0d2514d6925b0d9bc73554c409fc37bb82dd031ce8606dd171e31b77cebdee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3024ab4f9e3dd4ec75ee7cda4f301d0_NeikiAnalytics
Size

82KB
Sample

240513-mpp1haaf5y
MD5

b3024ab4f9e3dd4ec75ee7cda4f301d0
SHA1

7674cd26c5aebde362d66ff7bab3c5ea57fe9644
SHA256

7e0d2514d6925b0d9bc73554c409fc37bb82dd031ce8606dd171e31b77cebdee
SHA512

dc98f98646c7e32406d1a2107079f3659d23cd52fb5d3dcc5a96bcfa56bd665bb754131cc7cacc91f60475876ac23aea9c012512242eebaf19f64aedd44d990c
SSDEEP

1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2ZLmE:sB+F8tfPN4yCDKDjvQQQt6

Score

7^/10

Malware Config

Targets

- Target
  
  b3024ab4f9e3dd4ec75ee7cda4f301d0_NeikiAnalytics
- Size
  
  82KB
- MD5
  
  b3024ab4f9e3dd4ec75ee7cda4f301d0
- SHA1
  
  7674cd26c5aebde362d66ff7bab3c5ea57fe9644
- SHA256
  
  7e0d2514d6925b0d9bc73554c409fc37bb82dd031ce8606dd171e31b77cebdee
- SHA512
  
  dc98f98646c7e32406d1a2107079f3659d23cd52fb5d3dcc5a96bcfa56bd665bb754131cc7cacc91f60475876ac23aea9c012512242eebaf19f64aedd44d990c
- SSDEEP
  
  1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2ZLmE:sB+F8tfPN4yCDKDjvQQQt6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2