54808d93cea22708355459ec6542703fb8b50ca3746cc7c5b2192dc5fa0d5894 | Triage

Sharing

General

Target

642fca4646608461d4205cf40df83ff0_NeikiAnalytics.exe
Size

43KB
Sample

240523-a1zmvsfa9y
MD5

642fca4646608461d4205cf40df83ff0
SHA1

2306abd2d32c5fcbdd574caa7182bb96610eac99
SHA256

54808d93cea22708355459ec6542703fb8b50ca3746cc7c5b2192dc5fa0d5894
SHA512

3e90c0d3b61e00932c0d95a34267ba24c853bad01da3e491db9b127085bd601ba12d445ca7e4dbb7f50f358e8f2ceb9e430d44717e4ef58711953edb1b0519f5
SSDEEP

768:yBYWlEjMZeUGiM/IPCY+p5SI8xXy5rgCSrr53xUgs6S:ZWnaINUSIYA8hUgs6S

Score

7^/10

Malware Config

Targets

- Target
  
  642fca4646608461d4205cf40df83ff0_NeikiAnalytics.exe
- Size
  
  43KB
- MD5
  
  642fca4646608461d4205cf40df83ff0
- SHA1
  
  2306abd2d32c5fcbdd574caa7182bb96610eac99
- SHA256
  
  54808d93cea22708355459ec6542703fb8b50ca3746cc7c5b2192dc5fa0d5894
- SHA512
  
  3e90c0d3b61e00932c0d95a34267ba24c853bad01da3e491db9b127085bd601ba12d445ca7e4dbb7f50f358e8f2ceb9e430d44717e4ef58711953edb1b0519f5
- SSDEEP
  
  768:yBYWlEjMZeUGiM/IPCY+p5SI8xXy5rgCSrr53xUgs6S:ZWnaINUSIYA8hUgs6S
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2