4836864f4a14b2ec4fbfa801e465b0c1c86544b1d1d34e35d47232b0752def3f | Triage

Sharing

General

Target

5a0503485a7e6579ba3e01ec0c24e4b0_NeikiAnalytics.exe
Size

81KB
Sample

240522-3pq6kade99
MD5

5a0503485a7e6579ba3e01ec0c24e4b0
SHA1

67c5ed220608f1b7cd978300670c8b49c16e94b0
SHA256

4836864f4a14b2ec4fbfa801e465b0c1c86544b1d1d34e35d47232b0752def3f
SHA512

9bb935af446d80174379accfc4aebb273e1d72176f917fb4f96e5a55c799dc46430735a162c3ecb5072a471a05fb31c640ce657d4c81922b5d38128f529512e5
SSDEEP

1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcoH:EfMNE1JG6XMk27EbpOthl0ZUed0oH

Score

7^/10

Malware Config

Targets

- Target
  
  5a0503485a7e6579ba3e01ec0c24e4b0_NeikiAnalytics.exe
- Size
  
  81KB
- MD5
  
  5a0503485a7e6579ba3e01ec0c24e4b0
- SHA1
  
  67c5ed220608f1b7cd978300670c8b49c16e94b0
- SHA256
  
  4836864f4a14b2ec4fbfa801e465b0c1c86544b1d1d34e35d47232b0752def3f
- SHA512
  
  9bb935af446d80174379accfc4aebb273e1d72176f917fb4f96e5a55c799dc46430735a162c3ecb5072a471a05fb31c640ce657d4c81922b5d38128f529512e5
- SSDEEP
  
  1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcoH:EfMNE1JG6XMk27EbpOthl0ZUed0oH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2