3690dac3d6bb606f549419ab7fb8d43106616187c055fa945c7ea822875fb491 | Triage

Sharing

General

Target

60b5a62f113507fc6d3603866e736150_NeikiAnalytics.exe
Size

33KB
Sample

240523-amn9zaee3x
MD5

60b5a62f113507fc6d3603866e736150
SHA1

93c725fcefd6065e3b0dd29e315533a7b6d966b9
SHA256

3690dac3d6bb606f549419ab7fb8d43106616187c055fa945c7ea822875fb491
SHA512

62a03a347e7816c7b97c53610f7aad94bfd73d7e227e7a5d66ab5babd9bf114780fee4fe805f0ea09996c5493820ed598bc4938f9d26abf0c115e7e0bd1bb806
SSDEEP

384:MApc8m4e0ovQak4JI341Cdabnk6hJPXA0i:MApQr0ovdFJI34/Tk6hJPXbi

Score

7^/10

Malware Config

Targets

- Target
  
  60b5a62f113507fc6d3603866e736150_NeikiAnalytics.exe
- Size
  
  33KB
- MD5
  
  60b5a62f113507fc6d3603866e736150
- SHA1
  
  93c725fcefd6065e3b0dd29e315533a7b6d966b9
- SHA256
  
  3690dac3d6bb606f549419ab7fb8d43106616187c055fa945c7ea822875fb491
- SHA512
  
  62a03a347e7816c7b97c53610f7aad94bfd73d7e227e7a5d66ab5babd9bf114780fee4fe805f0ea09996c5493820ed598bc4938f9d26abf0c115e7e0bd1bb806
- SSDEEP
  
  384:MApc8m4e0ovQak4JI341Cdabnk6hJPXA0i:MApQr0ovdFJI34/Tk6hJPXbi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2