General

  • Target

    6fff3292c3b7c09842ff0c470a0eb7c0_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240523-b48klsha8z

  • MD5

    6fff3292c3b7c09842ff0c470a0eb7c0

  • SHA1

    95526d7ee40a92620ebc6e4223b80eab3f52e4b8

  • SHA256

    50468708d2bf0a3e3d3594671c1c851d3f752d3a35a5561754f07d1a5a56771a

  • SHA512

    0605bceed678a1d35ec4c0540aa9615fb3d720d5b4b25dccddb50e07a920919aeb45992273546cc77c7aef0f0b0107496b526c8441f510b79cfb0864a69c12be

  • SSDEEP

    384:OL7li/2zXq2DcEQvdhcJKLTp/NK9xaDjI:YbM/Q9cDjI

Score
7/10

Malware Config

Targets

    • Target

      6fff3292c3b7c09842ff0c470a0eb7c0_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      6fff3292c3b7c09842ff0c470a0eb7c0

    • SHA1

      95526d7ee40a92620ebc6e4223b80eab3f52e4b8

    • SHA256

      50468708d2bf0a3e3d3594671c1c851d3f752d3a35a5561754f07d1a5a56771a

    • SHA512

      0605bceed678a1d35ec4c0540aa9615fb3d720d5b4b25dccddb50e07a920919aeb45992273546cc77c7aef0f0b0107496b526c8441f510b79cfb0864a69c12be

    • SSDEEP

      384:OL7li/2zXq2DcEQvdhcJKLTp/NK9xaDjI:YbM/Q9cDjI

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks