932f01727da690805dbb898b4ecf794aba15fde9600d3266f8d49bd060b73abd | Triage

Sharing

General

Target

565d4e688af91012baabebe331302ea0_NeikiAnalytics.exe
Size

26KB
Sample

240522-3b2p5sch85
MD5

565d4e688af91012baabebe331302ea0
SHA1

87699fe4dfa06ce3232aaa6e5aa3611f405c35e2
SHA256

932f01727da690805dbb898b4ecf794aba15fde9600d3266f8d49bd060b73abd
SHA512

d5d6e443e89bb4acdbc9e72ae15b140374be0a896bf36c7fc091d344d8fd541f2c19829ce3d8dac9bdd1d5361a3de0e71a47c04fd79ce6c4295e4ca4ed8efbb8
SSDEEP

384:ctz3+pmuMgm4PHgTfhl1IBxRlHzZN2zVqObfVb2:6zQMQWlqBxRlHzZN2zAaVb2

Score

7^/10

Malware Config

Targets

- Target
  
  565d4e688af91012baabebe331302ea0_NeikiAnalytics.exe
- Size
  
  26KB
- MD5
  
  565d4e688af91012baabebe331302ea0
- SHA1
  
  87699fe4dfa06ce3232aaa6e5aa3611f405c35e2
- SHA256
  
  932f01727da690805dbb898b4ecf794aba15fde9600d3266f8d49bd060b73abd
- SHA512
  
  d5d6e443e89bb4acdbc9e72ae15b140374be0a896bf36c7fc091d344d8fd541f2c19829ce3d8dac9bdd1d5361a3de0e71a47c04fd79ce6c4295e4ca4ed8efbb8
- SSDEEP
  
  384:ctz3+pmuMgm4PHgTfhl1IBxRlHzZN2zVqObfVb2:6zQMQWlqBxRlHzZN2zAaVb2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2