Overview

overview

7

Static

static

7

bda67fce32...cs.exe

windows7-x64

7

bda67fce32...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    bda67fce32ba4f9c199a6a023370e410_NeikiAnalytics

  • Size

    111KB

  • Sample

    240513-tdhwdadg46

  • MD5

    bda67fce32ba4f9c199a6a023370e410

  • SHA1

    988dd03b3718d5dc8f145954d5e9f5c7e0b6f205

  • SHA256

    2ff18c632a032f9b7d74a469c97cd589641e1bcc918af6cd7f7b77bec7ba038b

  • SHA512

    ee4900bed7cf83a2e4b0a02db84d853a814c4c2ea370ec202170bc55dabdd4df230b43b35e38e330bdc4bc73d8d7d8c4f93b2ba4cb72623776774925f796d4d2

  • SSDEEP

    1536:ELNIW39SaZTbFARlq7jC1OZstZu0TSVEdUJWTWd18fo:ELlbZTZX3BAtTSVEdUJWTWd18fo

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      bda67fce32ba4f9c199a6a023370e410_NeikiAnalytics

    • Size

      111KB

    • MD5

      bda67fce32ba4f9c199a6a023370e410

    • SHA1

      988dd03b3718d5dc8f145954d5e9f5c7e0b6f205

    • SHA256

      2ff18c632a032f9b7d74a469c97cd589641e1bcc918af6cd7f7b77bec7ba038b

    • SHA512

      ee4900bed7cf83a2e4b0a02db84d853a814c4c2ea370ec202170bc55dabdd4df230b43b35e38e330bdc4bc73d8d7d8c4f93b2ba4cb72623776774925f796d4d2

    • SSDEEP

      1536:ELNIW39SaZTbFARlq7jC1OZstZu0TSVEdUJWTWd18fo:ELlbZTZX3BAtTSVEdUJWTWd18fo

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks