Overview

overview

7

Static

static

3

0e73ad21d3...cs.exe

windows7-x64

7

0e73ad21d3...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0e73ad21d3c8a4390b9c8660ea07b7f0_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240516-w5xvqaab3t

  • MD5

    0e73ad21d3c8a4390b9c8660ea07b7f0

  • SHA1

    619622cbdd11e2499702a4544bdd90146dd6ad1a

  • SHA256

    e0a802e632d75e9bcdb925dbf84354f11ee0082ade4dd482f76493b0d731fc06

  • SHA512

    7ca21f0d6d742d13d20546424b2aa5565466b805883f7c453c68961e91b6d30a5211d29ca14790d10a5a237b447aae1b2d82d9ae098ab349e9e59a718bd5acb1

  • SSDEEP

    384:3L7li/2zrq2DcEQvdhcJKLTp/NK9xa/u:73M/Q9c/u

Score
7/10

Malware Config

Targets

    • Target

      0e73ad21d3c8a4390b9c8660ea07b7f0_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      0e73ad21d3c8a4390b9c8660ea07b7f0

    • SHA1

      619622cbdd11e2499702a4544bdd90146dd6ad1a

    • SHA256

      e0a802e632d75e9bcdb925dbf84354f11ee0082ade4dd482f76493b0d731fc06

    • SHA512

      7ca21f0d6d742d13d20546424b2aa5565466b805883f7c453c68961e91b6d30a5211d29ca14790d10a5a237b447aae1b2d82d9ae098ab349e9e59a718bd5acb1

    • SSDEEP

      384:3L7li/2zrq2DcEQvdhcJKLTp/NK9xa/u:73M/Q9c/u

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks