9e2295822db730a8d30b27ee495010d0bf766e46603fe38a16a6cc679cc6458d | Triage

Sharing

General

Target

7c449c4290427fcf94b3ebea6b43f130_NeikiAnalytics
Size

2.2MB
Sample

240515-e28dlsha6x
MD5

7c449c4290427fcf94b3ebea6b43f130
SHA1

f6b00f8e4ba274f18a1cbc34a36732ba9ccd51e2
SHA256

9e2295822db730a8d30b27ee495010d0bf766e46603fe38a16a6cc679cc6458d
SHA512

5894cbcd2f92e41a28962053596dbe6cb0e9e4510803ee9c50a0e55a0ebb77c2e38041f1ab4c6fe97366a659bb63bfedc46d575c9374636dd811bf4dc51b0ad2
SSDEEP

49152:1monDCpDHLQqtdzjzKvR5tdjmujf2QhS3XfAy0SZkO+e7ogSZG97Pi4Snw:1mouDHBzjzmvj9fW/TVNx97K44w

Score

7^/10

Malware Config

Targets

- Target
  
  7c449c4290427fcf94b3ebea6b43f130_NeikiAnalytics
- Size
  
  2.2MB
- MD5
  
  7c449c4290427fcf94b3ebea6b43f130
- SHA1
  
  f6b00f8e4ba274f18a1cbc34a36732ba9ccd51e2
- SHA256
  
  9e2295822db730a8d30b27ee495010d0bf766e46603fe38a16a6cc679cc6458d
- SHA512
  
  5894cbcd2f92e41a28962053596dbe6cb0e9e4510803ee9c50a0e55a0ebb77c2e38041f1ab4c6fe97366a659bb63bfedc46d575c9374636dd811bf4dc51b0ad2
- SSDEEP
  
  49152:1monDCpDHLQqtdzjzKvR5tdjmujf2QhS3XfAy0SZkO+e7ogSZG97Pi4Snw:1mouDHBzjzmvj9fW/TVNx97K44w
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2