10e91233f0e62cbba0c8221cf57e05b6219f3370709dc2330c2de7d971fbb8c7 | Triage

Sharing

General

Target

5fb96aafe860802a6785ace980989ac0_NeikiAnalytics
Size

2.8MB
Sample

240515-ceweesbg8s
MD5

5fb96aafe860802a6785ace980989ac0
SHA1

b22d251bac3b0058ac61b0596d0dcf34c828491f
SHA256

10e91233f0e62cbba0c8221cf57e05b6219f3370709dc2330c2de7d971fbb8c7
SHA512

c76b36a389c94609fe9eff3777ae6cf4a312f1382ffa704891830d88b26e0947353e9c4ff2498826cfe1fa165e204ded1ffe297b0bbca98222081a74b8729f13
SSDEEP

49152:GnvR8t4T3Dv5/4QgxBRKwpVjkr4sUz3H4fd/EknDbcwLmNQX1SYCgXJqeWwx:tkhDwpXlTHApEkDbcwLY8UYC/Z

Score

7^/10

Malware Config

Targets

- Target
  
  5fb96aafe860802a6785ace980989ac0_NeikiAnalytics
- Size
  
  2.8MB
- MD5
  
  5fb96aafe860802a6785ace980989ac0
- SHA1
  
  b22d251bac3b0058ac61b0596d0dcf34c828491f
- SHA256
  
  10e91233f0e62cbba0c8221cf57e05b6219f3370709dc2330c2de7d971fbb8c7
- SHA512
  
  c76b36a389c94609fe9eff3777ae6cf4a312f1382ffa704891830d88b26e0947353e9c4ff2498826cfe1fa165e204ded1ffe297b0bbca98222081a74b8729f13
- SSDEEP
  
  49152:GnvR8t4T3Dv5/4QgxBRKwpVjkr4sUz3H4fd/EknDbcwLmNQX1SYCgXJqeWwx:tkhDwpXlTHApEkDbcwLY8UYC/Z
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2