c5d939da596ded4aedfd409e42906d056f472b6edf91ca6e4914221db77dacef | Triage

Sharing

General

Target

6fb6d38918f7505534eb9c6b8b725ec0_NeikiAnalytics.exe
Size

12KB
Sample

240523-b4b7eaha5x
MD5

6fb6d38918f7505534eb9c6b8b725ec0
SHA1

c9bc0eaa7856c4cd232eb6a97f195daf9abab393
SHA256

c5d939da596ded4aedfd409e42906d056f472b6edf91ca6e4914221db77dacef
SHA512

7ef5daa15e6dc49169dec60186283cb71a6079b1e13aa530b81da74b1e3cea2bd71ef64ddfae760d9caa90ef0bfdeacd65855b2f04364aa8b9a596456ef044b2
SSDEEP

384:8L7li/2z9q2DcEQvd2cJKLTp/NK9xaoU:alM8Q9coU

Score

7^/10

Malware Config

Targets

- Target
  
  6fb6d38918f7505534eb9c6b8b725ec0_NeikiAnalytics.exe
- Size
  
  12KB
- MD5
  
  6fb6d38918f7505534eb9c6b8b725ec0
- SHA1
  
  c9bc0eaa7856c4cd232eb6a97f195daf9abab393
- SHA256
  
  c5d939da596ded4aedfd409e42906d056f472b6edf91ca6e4914221db77dacef
- SHA512
  
  7ef5daa15e6dc49169dec60186283cb71a6079b1e13aa530b81da74b1e3cea2bd71ef64ddfae760d9caa90ef0bfdeacd65855b2f04364aa8b9a596456ef044b2
- SSDEEP
  
  384:8L7li/2z9q2DcEQvd2cJKLTp/NK9xaoU:alM8Q9coU
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2