f789715cc9a906d06d0c91df5e6ece3b61cd24848feb18d8b9eaf99613a0025c | Triage

Sharing

General

Target

3d9c9007ea5b94f32856b4bccc1dbb10_NeikiAnalytics.exe
Size

224KB
Sample

240522-z4x1wahb39
MD5

3d9c9007ea5b94f32856b4bccc1dbb10
SHA1

43aa779a725a798de8bb3783dae0d3392366e7db
SHA256

f789715cc9a906d06d0c91df5e6ece3b61cd24848feb18d8b9eaf99613a0025c
SHA512

b4d80db23810149439999a6345251281c8097e76d03c47f4db4e33b804aa97faa2455dad481b2ff1530ed67e01a2fa74b609399788ac4d534ddd41752ba498bb
SSDEEP

3072:GGDKJvjuwL3hCjG8G3GbGVGBGfGuGxGWYcrf6KadE:GGeJvzAYcD6Kad

Score

7^/10

Malware Config

Targets

- Target
  
  3d9c9007ea5b94f32856b4bccc1dbb10_NeikiAnalytics.exe
- Size
  
  224KB
- MD5
  
  3d9c9007ea5b94f32856b4bccc1dbb10
- SHA1
  
  43aa779a725a798de8bb3783dae0d3392366e7db
- SHA256
  
  f789715cc9a906d06d0c91df5e6ece3b61cd24848feb18d8b9eaf99613a0025c
- SHA512
  
  b4d80db23810149439999a6345251281c8097e76d03c47f4db4e33b804aa97faa2455dad481b2ff1530ed67e01a2fa74b609399788ac4d534ddd41752ba498bb
- SSDEEP
  
  3072:GGDKJvjuwL3hCjG8G3GbGVGBGfGuGxGWYcrf6KadE:GGeJvzAYcD6Kad
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2