36dad316144454dc8330e700810ffb4290eeb2ee6fbd58a8e9a9fb611c7b2386 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

b9af6e6277...cs.exe

windows7-x64

7

b9af6e6277...cs.exe

windows10-2004-x64

7

Sharing

General

Target

b9af6e627730e4f642a0d2879f9b7f50_NeikiAnalytics
Size

46KB
Sample

240513-qh1efagh33
MD5

b9af6e627730e4f642a0d2879f9b7f50
SHA1

1c39a1dfd0855f7a76674b39a66b3c8accbf8ea3
SHA256

36dad316144454dc8330e700810ffb4290eeb2ee6fbd58a8e9a9fb611c7b2386
SHA512

b561358a6bb6d47fc66165366680183e11f59a8f9a58fcad6933260354bba28b4a1c822a253ef841ad90852b46d0e0782d0cfae473fd1c14214f693874abd229
SSDEEP

768:n8eRH+MlFh0pXrL4i6sh7iQroCHmmbk2a3:n9l+Gi6sh7iQroCLo

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b9af6e627730e4f642a0d2879f9b7f50_NeikiAnalytics.exe

Resource

win7-20240215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

b9af6e627730e4f642a0d2879f9b7f50_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  b9af6e627730e4f642a0d2879f9b7f50_NeikiAnalytics
- Size
  
  46KB
- MD5
  
  b9af6e627730e4f642a0d2879f9b7f50
- SHA1
  
  1c39a1dfd0855f7a76674b39a66b3c8accbf8ea3
- SHA256
  
  36dad316144454dc8330e700810ffb4290eeb2ee6fbd58a8e9a9fb611c7b2386
- SHA512
  
  b561358a6bb6d47fc66165366680183e11f59a8f9a58fcad6933260354bba28b4a1c822a253ef841ad90852b46d0e0782d0cfae473fd1c14214f693874abd229
- SSDEEP
  
  768:n8eRH+MlFh0pXrL4i6sh7iQroCHmmbk2a3:n9l+Gi6sh7iQroCLo
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy