ad9f99cd68b71c27efa860931260cb69db40222ef9e6fe41ef2e651b82d60c30 | Triage

Sharing

General

Target

d245404998734866c9518a736fabfd20_NeikiAnalytics
Size

24KB
Sample

240515-psw94ahh24
MD5

d245404998734866c9518a736fabfd20
SHA1

62f7dc7b609f6cb62449d84dd7786614560a19ea
SHA256

ad9f99cd68b71c27efa860931260cb69db40222ef9e6fe41ef2e651b82d60c30
SHA512

fa4b9db8da78578b63e8eb9420b993a82f8a62004e5b6dfcb2091e43d1ed04e60105e75f99b355df7b51b4554a7183aa39b32c31165b150766d0503951d3a3bd
SSDEEP

384:b2AsyDTIWwt2JdtTsGH1ARxruGO8o+4tdmuQc1PbJiWmJc:y+DT/jTsGVNQMfJif+

Score

7^/10

Malware Config

Targets

- Target
  
  d245404998734866c9518a736fabfd20_NeikiAnalytics
- Size
  
  24KB
- MD5
  
  d245404998734866c9518a736fabfd20
- SHA1
  
  62f7dc7b609f6cb62449d84dd7786614560a19ea
- SHA256
  
  ad9f99cd68b71c27efa860931260cb69db40222ef9e6fe41ef2e651b82d60c30
- SHA512
  
  fa4b9db8da78578b63e8eb9420b993a82f8a62004e5b6dfcb2091e43d1ed04e60105e75f99b355df7b51b4554a7183aa39b32c31165b150766d0503951d3a3bd
- SSDEEP
  
  384:b2AsyDTIWwt2JdtTsGH1ARxruGO8o+4tdmuQc1PbJiWmJc:y+DT/jTsGVNQMfJif+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2