853709c19d42bd583c91534e1576c58d660fa557a9a91d4a869518054c08e6bd | Triage

Sharing

General

Target

9dfca57889825d484085c8b20fe3c990_NeikiAnalytics.exe
Size

31KB
Sample

240523-2vpn9acc92
MD5

9dfca57889825d484085c8b20fe3c990
SHA1

b691ddd8062f2d673a51ccceb409a31dcacc3f8c
SHA256

853709c19d42bd583c91534e1576c58d660fa557a9a91d4a869518054c08e6bd
SHA512

f08d5d1ae22de6f61bf29846c3599cab2ed1629550cd37619debb816cf39a6f00b1115a26197a70e73b65c6ebc4921e4c71fd6a6857ac74f497c5f5db7577720
SSDEEP

384:cMNn5/Hkj5JhkMP+OijAA4cOYWO6O9OqeMUUVfTuEpr80/OUf7O5bXWXjbOtHnAG:v//O3+O54nUCfTuEpYEOc7OVWXKHLUR0

Score

7^/10

Malware Config

Targets

- Target
  
  9dfca57889825d484085c8b20fe3c990_NeikiAnalytics.exe
- Size
  
  31KB
- MD5
  
  9dfca57889825d484085c8b20fe3c990
- SHA1
  
  b691ddd8062f2d673a51ccceb409a31dcacc3f8c
- SHA256
  
  853709c19d42bd583c91534e1576c58d660fa557a9a91d4a869518054c08e6bd
- SHA512
  
  f08d5d1ae22de6f61bf29846c3599cab2ed1629550cd37619debb816cf39a6f00b1115a26197a70e73b65c6ebc4921e4c71fd6a6857ac74f497c5f5db7577720
- SSDEEP
  
  384:cMNn5/Hkj5JhkMP+OijAA4cOYWO6O9OqeMUUVfTuEpr80/OUf7O5bXWXjbOtHnAG:v//O3+O54nUCfTuEpYEOc7OVWXKHLUR0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2