General

  • Target

    5b46579c5309ae2e864898a21187f640_NeikiAnalytics

  • Size

    2.0MB

  • Sample

    240515-b1dwtsag4w

  • MD5

    5b46579c5309ae2e864898a21187f640

  • SHA1

    5b7a6256aff333680dd1007498dc568b6842c731

  • SHA256

    9ccc7a37702a4b84bac88f68e01e1ac0f1c2379fd35c06c280a5134b6c876b4d

  • SHA512

    240eebcbf6677c1d07ab08ca9000d8684f974a27f17816f8403105cdf58dcbe83a51b8e1cc4484b0159094557c82087dfa2ebd034c08baf10c0a1fbee81e90c6

  • SSDEEP

    49152:WjXRlOp2BbTChxKCnFnQXBbrtgb/iQvu0UHO2:KXGp2B6hxvWbrtUTrUHO2

Score
7/10

Malware Config

Targets

    • Target

      5b46579c5309ae2e864898a21187f640_NeikiAnalytics

    • Size

      2.0MB

    • MD5

      5b46579c5309ae2e864898a21187f640

    • SHA1

      5b7a6256aff333680dd1007498dc568b6842c731

    • SHA256

      9ccc7a37702a4b84bac88f68e01e1ac0f1c2379fd35c06c280a5134b6c876b4d

    • SHA512

      240eebcbf6677c1d07ab08ca9000d8684f974a27f17816f8403105cdf58dcbe83a51b8e1cc4484b0159094557c82087dfa2ebd034c08baf10c0a1fbee81e90c6

    • SSDEEP

      49152:WjXRlOp2BbTChxKCnFnQXBbrtgb/iQvu0UHO2:KXGp2B6hxvWbrtUTrUHO2

    Score
    7/10
    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks