Overview

overview

7

Static

static

3

544b005c1b...cs.exe

windows7-x64

7

544b005c1b...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    544b005c1b3beb67954b3f7abf5ae310_NeikiAnalytics.exe

  • Size

    48KB

  • Sample

    240522-251t9scf35

  • MD5

    544b005c1b3beb67954b3f7abf5ae310

  • SHA1

    d4926ebd9bc92aeff99e5fdc3e263f958c6de059

  • SHA256

    f76a91ab2928458a2a4c33de09ffdfe3db86202ba6007354f2f8efb148c09af9

  • SHA512

    c40888226fdaafec1e72601a4e1d7b17d503c2b9f7d312a9cc70d37449fe69e86eac54dd738b33322fa3fd7266885995546e51b35718178531b1979d25daf47a

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+Ep6m:xj+VGMOtEvwDpjy+TRh+EUm

Score
7/10

Malware Config

Targets

    • Target

      544b005c1b3beb67954b3f7abf5ae310_NeikiAnalytics.exe

    • Size

      48KB

    • MD5

      544b005c1b3beb67954b3f7abf5ae310

    • SHA1

      d4926ebd9bc92aeff99e5fdc3e263f958c6de059

    • SHA256

      f76a91ab2928458a2a4c33de09ffdfe3db86202ba6007354f2f8efb148c09af9

    • SHA512

      c40888226fdaafec1e72601a4e1d7b17d503c2b9f7d312a9cc70d37449fe69e86eac54dd738b33322fa3fd7266885995546e51b35718178531b1979d25daf47a

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+Ep6m:xj+VGMOtEvwDpjy+TRh+EUm

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks