97664cecd758e1a4a64ec2a4d91168884805c8921d13c7837090d4d4c5ec727d | Triage

Sharing

General

Target

0772bbcbf7c04c4c2279bebe015029f0_NeikiAnalytics
Size

12KB
Sample

240515-vlqfvsba96
MD5

0772bbcbf7c04c4c2279bebe015029f0
SHA1

a97ee7848579fd3acb2433b5d8b9bd371a26eb73
SHA256

97664cecd758e1a4a64ec2a4d91168884805c8921d13c7837090d4d4c5ec727d
SHA512

5985d5056ade14ac85dd7b1854bdcdb7bf37d46a0c230f00d77a9dd500d81580d6b433be6cb115ced97beb1937a09b8753d1bd0aab43d5258aede7ae99697ade
SSDEEP

384:jL7li/2zisq2DcEQvdhcJKLTp/NK9xaa9s:neMM/Q9ca9s

Score

7^/10

Malware Config

Targets

- Target
  
  0772bbcbf7c04c4c2279bebe015029f0_NeikiAnalytics
- Size
  
  12KB
- MD5
  
  0772bbcbf7c04c4c2279bebe015029f0
- SHA1
  
  a97ee7848579fd3acb2433b5d8b9bd371a26eb73
- SHA256
  
  97664cecd758e1a4a64ec2a4d91168884805c8921d13c7837090d4d4c5ec727d
- SHA512
  
  5985d5056ade14ac85dd7b1854bdcdb7bf37d46a0c230f00d77a9dd500d81580d6b433be6cb115ced97beb1937a09b8753d1bd0aab43d5258aede7ae99697ade
- SSDEEP
  
  384:jL7li/2zisq2DcEQvdhcJKLTp/NK9xaa9s:neMM/Q9ca9s
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2