49537552916ac9008679c92c189d4ed970d075873d8155803efceedfa0126b29 | Triage

Sharing

General

Target

ef92ebf10533c0b1c663720eb601ddd0_NeikiAnalytics.exe
Size

52KB
Sample

240517-tth63sga5y
MD5

ef92ebf10533c0b1c663720eb601ddd0
SHA1

2d0ba57c6c93b4098b698c37e7fb8830e73193d8
SHA256

49537552916ac9008679c92c189d4ed970d075873d8155803efceedfa0126b29
SHA512

80d08e7ca8f4e34122270357afd99b06fe920be29ad1d767d9e3d29957d175a0c12d386cd9ee917d4b4f9324fc90dc5414f3b75c2e4c9e5f32ce59958d9e29f9
SSDEEP

768:373OtJDvhzNsyXk58sCuSw26eWp12hzORvmGpYO1oN6GO3bIMp6nbX6:3a/DvVNe58kSw2tw21ORvm7M3Ul76

Score

7^/10

Malware Config

Targets

- Target
  
  ef92ebf10533c0b1c663720eb601ddd0_NeikiAnalytics.exe
- Size
  
  52KB
- MD5
  
  ef92ebf10533c0b1c663720eb601ddd0
- SHA1
  
  2d0ba57c6c93b4098b698c37e7fb8830e73193d8
- SHA256
  
  49537552916ac9008679c92c189d4ed970d075873d8155803efceedfa0126b29
- SHA512
  
  80d08e7ca8f4e34122270357afd99b06fe920be29ad1d767d9e3d29957d175a0c12d386cd9ee917d4b4f9324fc90dc5414f3b75c2e4c9e5f32ce59958d9e29f9
- SSDEEP
  
  768:373OtJDvhzNsyXk58sCuSw26eWp12hzORvmGpYO1oN6GO3bIMp6nbX6:3a/DvVNe58kSw2tw21ORvm7M3Ul76
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2