3633bb7362b26e43bc0c08aed434e4cdde5efd72069ad6d1d46b9d407d5b87cb | Triage

Sharing

General

Target

46f9d12382c372b74afb8976d9b2f8a0_NeikiAnalytics
Size

74KB
Sample

240515-2dqvzsfb8y
MD5

46f9d12382c372b74afb8976d9b2f8a0
SHA1

26279eb061e7fd2d37dac6be58e92c78165d495b
SHA256

3633bb7362b26e43bc0c08aed434e4cdde5efd72069ad6d1d46b9d407d5b87cb
SHA512

55aa092bb2c030fd475346c9c613b7d80f3d7346c00b3709d572f8bbb124bae94a2a9b7bf9e930cf78c505512f585699694a06c919708cd8247001a590f75573
SSDEEP

384:+41DuuOFZyUVpULCgDb2prxVTn24X/m7Q6Al6z+yXpC:fDcZyUpULCgo24T96ayXQ

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  46f9d12382c372b74afb8976d9b2f8a0_NeikiAnalytics
- Size
  
  74KB
- MD5
  
  46f9d12382c372b74afb8976d9b2f8a0
- SHA1
  
  26279eb061e7fd2d37dac6be58e92c78165d495b
- SHA256
  
  3633bb7362b26e43bc0c08aed434e4cdde5efd72069ad6d1d46b9d407d5b87cb
- SHA512
  
  55aa092bb2c030fd475346c9c613b7d80f3d7346c00b3709d572f8bbb124bae94a2a9b7bf9e930cf78c505512f585699694a06c919708cd8247001a590f75573
- SSDEEP
  
  384:+41DuuOFZyUVpULCgDb2prxVTn24X/m7Q6Al6z+yXpC:fDcZyUpULCgo24T96ayXQ
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2