d532220a7e22014589d51e4a2b926e0098e55ce512b9b53dab21fca882a45b13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce9d6ae441e02255341bca75ec6fbdb0_NeikiAnalytics
Size

28KB
Sample

240514-vmdtfsfg59
MD5

ce9d6ae441e02255341bca75ec6fbdb0
SHA1

6edb903b581b68d7bed38919392278b962d3eb6d
SHA256

d532220a7e22014589d51e4a2b926e0098e55ce512b9b53dab21fca882a45b13
SHA512

87d8b429095c59a3462dff7dd83dfdd7d3f04d7b5e3bb92ddaf9111b0fb119325255b428385b4991d3a14b8ad07f253e0e8c0b3cd26120db38748d89d6c51cb0
SSDEEP

384:6EJ7osKQ3wK8ZL2lQ9/sF1666666666JJ7UueqrDjFvbE4EUtKK5YMIglopB5m1g:/8sJAnZCQBwuUuequ7UUK2xgl4sVZKz

Score

7^/10

Malware Config

Targets

- Target
  
  ce9d6ae441e02255341bca75ec6fbdb0_NeikiAnalytics
- Size
  
  28KB
- MD5
  
  ce9d6ae441e02255341bca75ec6fbdb0
- SHA1
  
  6edb903b581b68d7bed38919392278b962d3eb6d
- SHA256
  
  d532220a7e22014589d51e4a2b926e0098e55ce512b9b53dab21fca882a45b13
- SHA512
  
  87d8b429095c59a3462dff7dd83dfdd7d3f04d7b5e3bb92ddaf9111b0fb119325255b428385b4991d3a14b8ad07f253e0e8c0b3cd26120db38748d89d6c51cb0
- SSDEEP
  
  384:6EJ7osKQ3wK8ZL2lQ9/sF1666666666JJ7UueqrDjFvbE4EUtKK5YMIglopB5m1g:/8sJAnZCQBwuUuequ7UUK2xgl4sVZKz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2