f8d51e735aaee7fcd41ed7d9e3392f6ecae936f306b534dccdb0550ad1314eb0 | Triage

Sharing

General

Target

513c605fd68c0e684d3631d95645c410_NeikiAnalytics.exe
Size

32KB
Sample

240522-ytrknseg33
MD5

513c605fd68c0e684d3631d95645c410
SHA1

95d598d1ec88969e6bb9c6d2c5c344b67a94290c
SHA256

f8d51e735aaee7fcd41ed7d9e3392f6ecae936f306b534dccdb0550ad1314eb0
SHA512

799026b7aa71b52c8ae27c01a2aaf0c294b999f9fbae7031440acf1a59c7d31a127de9c7cebeb59fbef0ef485efe34b387e3b190c9928819d1742143b4257782
SSDEEP

768:uPHGuSrB0EakzhCG611DhEg4H1zpTyGWDk:smuSnLCPeHm/A

Score

7^/10

Malware Config

Targets

- Target
  
  513c605fd68c0e684d3631d95645c410_NeikiAnalytics.exe
- Size
  
  32KB
- MD5
  
  513c605fd68c0e684d3631d95645c410
- SHA1
  
  95d598d1ec88969e6bb9c6d2c5c344b67a94290c
- SHA256
  
  f8d51e735aaee7fcd41ed7d9e3392f6ecae936f306b534dccdb0550ad1314eb0
- SHA512
  
  799026b7aa71b52c8ae27c01a2aaf0c294b999f9fbae7031440acf1a59c7d31a127de9c7cebeb59fbef0ef485efe34b387e3b190c9928819d1742143b4257782
- SSDEEP
  
  768:uPHGuSrB0EakzhCG611DhEg4H1zpTyGWDk:smuSnLCPeHm/A
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2