b5b0831e3bf1834073c649b2361b3d2041fce70cbe8ab761bbe6e3a00bf07fdc | Triage

Sharing

General

Target

5b23e1994b4b2d4f2026669562d0e220_NeikiAnalytics.exe
Size

45KB
Sample

240522-3sj7esdg46
MD5

5b23e1994b4b2d4f2026669562d0e220
SHA1

0dcd73aa83f8de17cc3462e74c7d8d1ffaaed163
SHA256

b5b0831e3bf1834073c649b2361b3d2041fce70cbe8ab761bbe6e3a00bf07fdc
SHA512

bfca1ba4b141b4a5a14c8e747b51d23e7f125c6d4971a619e60d2dda9f10a4fd40d312603a867c11690c0953a9eefc444957411482bdad726feab851acd84366
SSDEEP

768:fhjrhoahHKVxemgFxzpOd/22fZ3SNwqrj5rShj711OiL:ftrhXFwSzpOd/22fZ3HqVqjrTL

Score

7^/10

Malware Config

Targets

- Target
  
  5b23e1994b4b2d4f2026669562d0e220_NeikiAnalytics.exe
- Size
  
  45KB
- MD5
  
  5b23e1994b4b2d4f2026669562d0e220
- SHA1
  
  0dcd73aa83f8de17cc3462e74c7d8d1ffaaed163
- SHA256
  
  b5b0831e3bf1834073c649b2361b3d2041fce70cbe8ab761bbe6e3a00bf07fdc
- SHA512
  
  bfca1ba4b141b4a5a14c8e747b51d23e7f125c6d4971a619e60d2dda9f10a4fd40d312603a867c11690c0953a9eefc444957411482bdad726feab851acd84366
- SSDEEP
  
  768:fhjrhoahHKVxemgFxzpOd/22fZ3SNwqrj5rShj711OiL:ftrhXFwSzpOd/22fZ3HqVqjrTL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2