71fa8d804e9e93ef7a67ba9f5d567561453b157158d48893fa1c55a9a06eabcd | Triage

Sharing

General

Target

c2ede92421629acfb465df63d98e8b00_NeikiAnalytics.exe
Size

19KB
Sample

240520-g2fppsfb72
MD5

c2ede92421629acfb465df63d98e8b00
SHA1

c13c4045a73deafac19a491203e9cf6d63b9c861
SHA256

71fa8d804e9e93ef7a67ba9f5d567561453b157158d48893fa1c55a9a06eabcd
SHA512

5c1c52d1a5fe0e1eac867f52891e0099d594a78548d59989a7dfa4d6496f91549fd055b7201a781f2920088afee7c6f8caf77d2bd57c7094b62137472584c660
SSDEEP

384:MKQOjAyV58awWdFecAhGrbweCvklV4k7oLvWm3Iq:MKfAQjU8rV4UoLx3Iq

Score

7^/10

Malware Config

Targets

- Target
  
  c2ede92421629acfb465df63d98e8b00_NeikiAnalytics.exe
- Size
  
  19KB
- MD5
  
  c2ede92421629acfb465df63d98e8b00
- SHA1
  
  c13c4045a73deafac19a491203e9cf6d63b9c861
- SHA256
  
  71fa8d804e9e93ef7a67ba9f5d567561453b157158d48893fa1c55a9a06eabcd
- SHA512
  
  5c1c52d1a5fe0e1eac867f52891e0099d594a78548d59989a7dfa4d6496f91549fd055b7201a781f2920088afee7c6f8caf77d2bd57c7094b62137472584c660
- SSDEEP
  
  384:MKQOjAyV58awWdFecAhGrbweCvklV4k7oLvWm3Iq:MKfAQjU8rV4UoLx3Iq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2