70dadb754d201be8fa7e111c0b76f3fbe6fc43bc4b09dd7721d520885a3d771b | Triage

Sharing

General

Target

ec2c0d4cd378ed03991159c7cebb9ae0_NeikiAnalytics.exe
Size

46KB
Sample

240517-pj1wxsgh4y
MD5

ec2c0d4cd378ed03991159c7cebb9ae0
SHA1

2d98f2343eb0a2ed64ebddc9b2b5130f969f3bc0
SHA256

70dadb754d201be8fa7e111c0b76f3fbe6fc43bc4b09dd7721d520885a3d771b
SHA512

e2b69a93f68ddbd6ca72ebe817f4eded931871a54c8d439e8df4c3981ac9aa91c30bf27b815b7477fcdec8bd88cd97bda95edd54258c500a3f48cd7a0f2cec0b
SSDEEP

384:44d2mCeJjyDlEjNOZeU63EDx5M/6HjrAQNsrwnekb+zJPOuE94ZdknMkaPJQu3HV:4BYolEjMZeUGiM/IP8Y+lPPE9cXrPQ9c

Score

7^/10

Malware Config

Targets

- Target
  
  ec2c0d4cd378ed03991159c7cebb9ae0_NeikiAnalytics.exe
- Size
  
  46KB
- MD5
  
  ec2c0d4cd378ed03991159c7cebb9ae0
- SHA1
  
  2d98f2343eb0a2ed64ebddc9b2b5130f969f3bc0
- SHA256
  
  70dadb754d201be8fa7e111c0b76f3fbe6fc43bc4b09dd7721d520885a3d771b
- SHA512
  
  e2b69a93f68ddbd6ca72ebe817f4eded931871a54c8d439e8df4c3981ac9aa91c30bf27b815b7477fcdec8bd88cd97bda95edd54258c500a3f48cd7a0f2cec0b
- SSDEEP
  
  384:44d2mCeJjyDlEjNOZeU63EDx5M/6HjrAQNsrwnekb+zJPOuE94ZdknMkaPJQu3HV:4BYolEjMZeUGiM/IP8Y+lPPE9cXrPQ9c
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2