93e5a119dc68e8f939198a6204773d6ae53c131aabc3fe5fdc5aa4976187b760 | Triage

Sharing

General

Target

6bd7d845dad11b129610cecb95363420_NeikiAnalytics.exe
Size

12KB
Sample

240523-bp49msgc5w
MD5

6bd7d845dad11b129610cecb95363420
SHA1

c55817f8e4e0829a069b39e34e4be53f4bfc7867
SHA256

93e5a119dc68e8f939198a6204773d6ae53c131aabc3fe5fdc5aa4976187b760
SHA512

e3753e45aa6e1b53b60f4156b358e7e60b7ce96ffb847a856ce24e783d053f03928391cdbb7bbc8d0f64c4b0982b3043b813767401fbadbb1f2fb249b56c24e9
SSDEEP

384:AL7li/2z1q2DcEQvdhcJKLTp/NK9xaC/:eNM/Q9cC/

Score

7^/10

Malware Config

Targets

- Target
  
  6bd7d845dad11b129610cecb95363420_NeikiAnalytics.exe
- Size
  
  12KB
- MD5
  
  6bd7d845dad11b129610cecb95363420
- SHA1
  
  c55817f8e4e0829a069b39e34e4be53f4bfc7867
- SHA256
  
  93e5a119dc68e8f939198a6204773d6ae53c131aabc3fe5fdc5aa4976187b760
- SHA512
  
  e3753e45aa6e1b53b60f4156b358e7e60b7ce96ffb847a856ce24e783d053f03928391cdbb7bbc8d0f64c4b0982b3043b813767401fbadbb1f2fb249b56c24e9
- SSDEEP
  
  384:AL7li/2z1q2DcEQvdhcJKLTp/NK9xaC/:eNM/Q9cC/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2