ad2c91d4a885e09f4f25b82adf91d724d33500f4184b6b1201f536bb10d36723 | Triage

Sharing

General

Target

35d984f0d7dca1a7ed7951365a1bb8a0_NeikiAnalytics.exe
Size

38KB
Sample

240522-zd2w5sfg72
MD5

35d984f0d7dca1a7ed7951365a1bb8a0
SHA1

8ed8f36a45866318531bfeacea51973f1bf1a655
SHA256

ad2c91d4a885e09f4f25b82adf91d724d33500f4184b6b1201f536bb10d36723
SHA512

cce960359a226ed20b33908b88f9e7e4178d8ff2b7b2325e5ebbcfb084a2b996d2328f37d112e5f1f3cc5592172a9532dbaab6031ac3fb0d85b4eb730f15367a
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSKm5uhy7O4qqgN:X6QFElP6n+gJQMOtEvwDpjBcSKm5uhw2

Score

7^/10

Malware Config

Targets

- Target
  
  35d984f0d7dca1a7ed7951365a1bb8a0_NeikiAnalytics.exe
- Size
  
  38KB
- MD5
  
  35d984f0d7dca1a7ed7951365a1bb8a0
- SHA1
  
  8ed8f36a45866318531bfeacea51973f1bf1a655
- SHA256
  
  ad2c91d4a885e09f4f25b82adf91d724d33500f4184b6b1201f536bb10d36723
- SHA512
  
  cce960359a226ed20b33908b88f9e7e4178d8ff2b7b2325e5ebbcfb084a2b996d2328f37d112e5f1f3cc5592172a9532dbaab6031ac3fb0d85b4eb730f15367a
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSKm5uhy7O4qqgN:X6QFElP6n+gJQMOtEvwDpjBcSKm5uhw2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2