fb9cf240e71c3e05516c92a7bc592328d689935cbcffebc10a78e8185ca71287 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52ad49e451596f7aa9230ec4d64c6d20_NeikiAnalytics
Size

16KB
Sample

240514-ceyjsafc62
MD5

52ad49e451596f7aa9230ec4d64c6d20
SHA1

59cfd0f83090271d04b3ab1cc5a870071e8686e5
SHA256

fb9cf240e71c3e05516c92a7bc592328d689935cbcffebc10a78e8185ca71287
SHA512

ce92b4de4437bc70ff0a20a40e201c6281c2693fc9ae9933ee06dee460b0d85fb615499de42465abdd04cf0d2fbce9e87815436c2a18340504e3f4cf72560306
SSDEEP

192:kRQ9GnwR2M5AZxMjrzjR3OmaR/XHLFaMxbZ8S6Ad2uV2jNrt56gF:LcnwR2M5BPzVUzwMdSSRArn

Score

7^/10

Malware Config

Targets

- Target
  
  52ad49e451596f7aa9230ec4d64c6d20_NeikiAnalytics
- Size
  
  16KB
- MD5
  
  52ad49e451596f7aa9230ec4d64c6d20
- SHA1
  
  59cfd0f83090271d04b3ab1cc5a870071e8686e5
- SHA256
  
  fb9cf240e71c3e05516c92a7bc592328d689935cbcffebc10a78e8185ca71287
- SHA512
  
  ce92b4de4437bc70ff0a20a40e201c6281c2693fc9ae9933ee06dee460b0d85fb615499de42465abdd04cf0d2fbce9e87815436c2a18340504e3f4cf72560306
- SSDEEP
  
  192:kRQ9GnwR2M5AZxMjrzjR3OmaR/XHLFaMxbZ8S6Ad2uV2jNrt56gF:LcnwR2M5BPzVUzwMdSSRArn
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2