27bda8cbd868b4e275f71e52fce92e231867f17ee6e556011c6d88fe6c90a298 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f0cc955182217fd43ddbbce80ad6620_NeikiAnalytics.exe
Size

26KB
Sample

240517-c972psdg7z
MD5

8f0cc955182217fd43ddbbce80ad6620
SHA1

ac308dbf78a6e7431cd64425d4bbc31a73b4ed3d
SHA256

27bda8cbd868b4e275f71e52fce92e231867f17ee6e556011c6d88fe6c90a298
SHA512

08c0897eee87608af51956c2896069a9b077eb02980de4e3dba8145d2cd005de49455715f497d717a4853ef1c84475bd7ba967c8281c61200c4a3b19f5506642
SSDEEP

384:WQoEmqWUIncBpEzjvehQtFx7UJxlfS+Ui0MX97n+Kt7P:WQEqsncbKjWutz7axlfSri/XxTJP

Score

7^/10

Malware Config

Targets

- Target
  
  8f0cc955182217fd43ddbbce80ad6620_NeikiAnalytics.exe
- Size
  
  26KB
- MD5
  
  8f0cc955182217fd43ddbbce80ad6620
- SHA1
  
  ac308dbf78a6e7431cd64425d4bbc31a73b4ed3d
- SHA256
  
  27bda8cbd868b4e275f71e52fce92e231867f17ee6e556011c6d88fe6c90a298
- SHA512
  
  08c0897eee87608af51956c2896069a9b077eb02980de4e3dba8145d2cd005de49455715f497d717a4853ef1c84475bd7ba967c8281c61200c4a3b19f5506642
- SSDEEP
  
  384:WQoEmqWUIncBpEzjvehQtFx7UJxlfS+Ui0MX97n+Kt7P:WQEqsncbKjWutz7axlfSri/XxTJP
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2