c3ac07758bc05673007a38cadda3367ee867245de5bd7191ef17b37704f1a7be | Triage

Sharing

General

Target

5f6cc86bf094b06bcf18964695d63eb0_NeikiAnalytics.exe
Size

2.7MB
Sample

240523-ahgz4aec61
MD5

5f6cc86bf094b06bcf18964695d63eb0
SHA1

5a6f4b250689f7d1e4bc09f5d0dfb8167a6c13f4
SHA256

c3ac07758bc05673007a38cadda3367ee867245de5bd7191ef17b37704f1a7be
SHA512

debf702871e99e481941c1a580edf6132243e53b39d2c31de1438fd2033d9eb7da9c6f1fd61a3ec3fd8f4b0b0885920dc022cb82d39515c64b4aea5793bda793
SSDEEP

49152:90yT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:RTE66yXZ02DwUHoazRofxIhELjf/IVgs

Score

7^/10

Malware Config

Targets

- Target
  
  5f6cc86bf094b06bcf18964695d63eb0_NeikiAnalytics.exe
- Size
  
  2.7MB
- MD5
  
  5f6cc86bf094b06bcf18964695d63eb0
- SHA1
  
  5a6f4b250689f7d1e4bc09f5d0dfb8167a6c13f4
- SHA256
  
  c3ac07758bc05673007a38cadda3367ee867245de5bd7191ef17b37704f1a7be
- SHA512
  
  debf702871e99e481941c1a580edf6132243e53b39d2c31de1438fd2033d9eb7da9c6f1fd61a3ec3fd8f4b0b0885920dc022cb82d39515c64b4aea5793bda793
- SSDEEP
  
  49152:90yT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:RTE66yXZ02DwUHoazRofxIhELjf/IVgs
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2