7447860909e6abf12a3a3aa3ec87dc0a58ee0fa5a5e5e5ed4bac2f24dd414bae | Triage

Sharing

General

Target

068b1915190abfed4c918b468eea5cc0_NeikiAnalytics.exe
Size

12KB
Sample

240521-x45dvaga2v
MD5

068b1915190abfed4c918b468eea5cc0
SHA1

e7a832275ea76976da7a840cd467bd169187742a
SHA256

7447860909e6abf12a3a3aa3ec87dc0a58ee0fa5a5e5e5ed4bac2f24dd414bae
SHA512

80970cb2ba5165e2ec8f2d580948340fd4cc824d899848b856549bd366d14fb2a62cb8fb5e6acf50e11bf5d088a1044a471000c0006c08d0a0be4420578144cf
SSDEEP

384:ZL7li/2zXq2DcEQvdQcJKLTp/NK9xaRG:pDMCQ9cRG

Score

7^/10

Malware Config

Targets

- Target
  
  068b1915190abfed4c918b468eea5cc0_NeikiAnalytics.exe
- Size
  
  12KB
- MD5
  
  068b1915190abfed4c918b468eea5cc0
- SHA1
  
  e7a832275ea76976da7a840cd467bd169187742a
- SHA256
  
  7447860909e6abf12a3a3aa3ec87dc0a58ee0fa5a5e5e5ed4bac2f24dd414bae
- SHA512
  
  80970cb2ba5165e2ec8f2d580948340fd4cc824d899848b856549bd366d14fb2a62cb8fb5e6acf50e11bf5d088a1044a471000c0006c08d0a0be4420578144cf
- SSDEEP
  
  384:ZL7li/2zXq2DcEQvdQcJKLTp/NK9xaRG:pDMCQ9cRG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2