9f8a692f4795ea939d042c9914952b7c1782ab54d0f9c88c3fe4a60556be98a9 | Triage

Sharing

General

Target

d25fa79d16af84d3f61d66936f02ac90_NeikiAnalytics
Size

25KB
Sample

240515-pvs1fshh97
MD5

d25fa79d16af84d3f61d66936f02ac90
SHA1

46cad828fed51ddfd3b919a6f5e2b231b32a6a8f
SHA256

9f8a692f4795ea939d042c9914952b7c1782ab54d0f9c88c3fe4a60556be98a9
SHA512

713decadafb32aa60502bd91e25290354fc821abcd7c76bc4dbeddfed3edcf8a919d9cfbbccb84fe0cb6b74f08f4d3c3bd8c8a4cd41a5c398b2d12f1111abcdb
SSDEEP

384:0wznxkW5jElj3Jb7IdLEwcFq2jAiOCTJOcQTws61:lVE55/IqFq2s1EJO3j61

Score

7^/10

Malware Config

Targets

- Target
  
  d25fa79d16af84d3f61d66936f02ac90_NeikiAnalytics
- Size
  
  25KB
- MD5
  
  d25fa79d16af84d3f61d66936f02ac90
- SHA1
  
  46cad828fed51ddfd3b919a6f5e2b231b32a6a8f
- SHA256
  
  9f8a692f4795ea939d042c9914952b7c1782ab54d0f9c88c3fe4a60556be98a9
- SHA512
  
  713decadafb32aa60502bd91e25290354fc821abcd7c76bc4dbeddfed3edcf8a919d9cfbbccb84fe0cb6b74f08f4d3c3bd8c8a4cd41a5c398b2d12f1111abcdb
- SSDEEP
  
  384:0wznxkW5jElj3Jb7IdLEwcFq2jAiOCTJOcQTws61:lVE55/IqFq2s1EJO3j61
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2