8fa85f1d86e8f1aa863ea11dff4aa5c2d6566e45ef5c69aeb31a2269d748e34b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c336e7808e265716e0385b1836c1a040_NeikiAnalytics
Size

81KB
Sample

240516-jwyz7sbf25
MD5

c336e7808e265716e0385b1836c1a040
SHA1

48fb743a5c153d7a7bd46c613c1475902394f99c
SHA256

8fa85f1d86e8f1aa863ea11dff4aa5c2d6566e45ef5c69aeb31a2269d748e34b
SHA512

c65aec14e29def954cfbdbd109c10df021f1034090f3b3e6e37973de9f0a23d166130844512de3be168907f58915bef16494ca9d97dfee74cb86ee14da1974ed
SSDEEP

1536:qzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcw:wfMNE1JG6XMk27EbpOthl0ZUed0w

Score

7^/10

Malware Config

Targets

- Target
  
  c336e7808e265716e0385b1836c1a040_NeikiAnalytics
- Size
  
  81KB
- MD5
  
  c336e7808e265716e0385b1836c1a040
- SHA1
  
  48fb743a5c153d7a7bd46c613c1475902394f99c
- SHA256
  
  8fa85f1d86e8f1aa863ea11dff4aa5c2d6566e45ef5c69aeb31a2269d748e34b
- SHA512
  
  c65aec14e29def954cfbdbd109c10df021f1034090f3b3e6e37973de9f0a23d166130844512de3be168907f58915bef16494ca9d97dfee74cb86ee14da1974ed
- SSDEEP
  
  1536:qzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcw:wfMNE1JG6XMk27EbpOthl0ZUed0w
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2