1f37bbee512c5d6192c46714e88f6f5ee1e4e7332f64986d92627f089a6d24cb | Triage

Sharing

General

Target

bce60d78d9a86deff1e49741e15ce740_NeikiAnalytics
Size

12KB
Sample

240513-smjnlace43
MD5

bce60d78d9a86deff1e49741e15ce740
SHA1

cf88457054cf906592e9e0c0ac5980f0e82f3b54
SHA256

1f37bbee512c5d6192c46714e88f6f5ee1e4e7332f64986d92627f089a6d24cb
SHA512

de34ddc946c853b0da2648d443a167436ebd1837e82036e05dd8d903b524f9ed02f16bf41a7ebad5e1755a380463e28202dd115bc966f10ccf312e1aab47c0df
SSDEEP

384:hL7li/2zeq2DcEQvdQcJKLTp/NK9xanx:BGMCQ9cnx

Score

7^/10

Malware Config

Targets

- Target
  
  bce60d78d9a86deff1e49741e15ce740_NeikiAnalytics
- Size
  
  12KB
- MD5
  
  bce60d78d9a86deff1e49741e15ce740
- SHA1
  
  cf88457054cf906592e9e0c0ac5980f0e82f3b54
- SHA256
  
  1f37bbee512c5d6192c46714e88f6f5ee1e4e7332f64986d92627f089a6d24cb
- SHA512
  
  de34ddc946c853b0da2648d443a167436ebd1837e82036e05dd8d903b524f9ed02f16bf41a7ebad5e1755a380463e28202dd115bc966f10ccf312e1aab47c0df
- SSDEEP
  
  384:hL7li/2zeq2DcEQvdQcJKLTp/NK9xanx:BGMCQ9cnx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2