7cd3647b0e93352d2cedd0103a16ef794b5618f20df6387eeabc8a013bdeb9a9 | Triage

Sharing

General

Target

10e8917546bc43cd789a3135d5558830_NeikiAnalytics
Size

12KB
Sample

240514-xmzr2abc5y
MD5

10e8917546bc43cd789a3135d5558830
SHA1

f45838965abc8b031970380cfe22361d0e796b50
SHA256

7cd3647b0e93352d2cedd0103a16ef794b5618f20df6387eeabc8a013bdeb9a9
SHA512

4282081c1bfb21bdb13b11bde62a5bfde9d9a8af86e3d84af3ef03ff8cae26e903f710f7a3057ed6cf67fc45d1edff484ed7bfb775b4d3df3333abfbd8436d52
SSDEEP

384:wL7li/2zDq2DcEQvdhcJKLTp/NK9xa+/:u/M/Q9c+/

Score

7^/10

Malware Config

Targets

- Target
  
  10e8917546bc43cd789a3135d5558830_NeikiAnalytics
- Size
  
  12KB
- MD5
  
  10e8917546bc43cd789a3135d5558830
- SHA1
  
  f45838965abc8b031970380cfe22361d0e796b50
- SHA256
  
  7cd3647b0e93352d2cedd0103a16ef794b5618f20df6387eeabc8a013bdeb9a9
- SHA512
  
  4282081c1bfb21bdb13b11bde62a5bfde9d9a8af86e3d84af3ef03ff8cae26e903f710f7a3057ed6cf67fc45d1edff484ed7bfb775b4d3df3333abfbd8436d52
- SSDEEP
  
  384:wL7li/2zDq2DcEQvdhcJKLTp/NK9xa+/:u/M/Q9c+/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2