2294db580deea247fabd0265f81ffcb8ea694cb2bbf1d57745e30c9144aa41d4 | Triage

Sharing

General

Target

40c6d75f1767233585d00ab1cfe2eda0_NeikiAnalytics.exe
Size

97KB
Sample

240522-1dhnyahe41
MD5

40c6d75f1767233585d00ab1cfe2eda0
SHA1

e6f884eb643fd562cd7e26819ec422a04ba33b70
SHA256

2294db580deea247fabd0265f81ffcb8ea694cb2bbf1d57745e30c9144aa41d4
SHA512

9bde8a931796262f49fe6e771e98b9a9c175edb9152c858d6a45ddae3e57736a632ba7cdcc3b601b412c2536f9b18996322584f235b6aa2441330e7cb9bc4980
SSDEEP

384:pMSTdCSYpIYpeaiMswx5NXhmLVNxzrba0DeuKF/1erZGDsZF:qSRCSfXa9xThmzxzr5Kd8Z

Score

7^/10

Malware Config

Targets

- Target
  
  40c6d75f1767233585d00ab1cfe2eda0_NeikiAnalytics.exe
- Size
  
  97KB
- MD5
  
  40c6d75f1767233585d00ab1cfe2eda0
- SHA1
  
  e6f884eb643fd562cd7e26819ec422a04ba33b70
- SHA256
  
  2294db580deea247fabd0265f81ffcb8ea694cb2bbf1d57745e30c9144aa41d4
- SHA512
  
  9bde8a931796262f49fe6e771e98b9a9c175edb9152c858d6a45ddae3e57736a632ba7cdcc3b601b412c2536f9b18996322584f235b6aa2441330e7cb9bc4980
- SSDEEP
  
  384:pMSTdCSYpIYpeaiMswx5NXhmLVNxzrba0DeuKF/1erZGDsZF:qSRCSfXa9xThmzxzr5Kd8Z
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2