bb98d2f668a496736a13aa511e3becd97db1bb6afa7c1f3893a0682256e95d37 | Triage

Sharing

General

Target

6d528c0a2dbd434030f15feddb918120_NeikiAnalytics.exe
Size

93KB
Sample

240523-bv39jagg76
MD5

6d528c0a2dbd434030f15feddb918120
SHA1

f8890a4b8a188fe383cc24009db23d4df51ba006
SHA256

bb98d2f668a496736a13aa511e3becd97db1bb6afa7c1f3893a0682256e95d37
SHA512

3f545978ca7f6e470f0b3254c104043d8d4c6a06100ca144acc4a9f62fe984446dd8a97692b6d6f3ba6ea351f4506bccf5b7d8e945b4a0b88326b9589075cc99
SSDEEP

768:wrGLctww30POw9mKv2oMumjeEgzHI/fCREC3rHvDUXM+GpcS63uHzbQsWGhM1xHy:xch3vwSbax3rHV6+HwsWGhG5JiBzQr3G

Score

7^/10

Malware Config

Targets

- Target
  
  6d528c0a2dbd434030f15feddb918120_NeikiAnalytics.exe
- Size
  
  93KB
- MD5
  
  6d528c0a2dbd434030f15feddb918120
- SHA1
  
  f8890a4b8a188fe383cc24009db23d4df51ba006
- SHA256
  
  bb98d2f668a496736a13aa511e3becd97db1bb6afa7c1f3893a0682256e95d37
- SHA512
  
  3f545978ca7f6e470f0b3254c104043d8d4c6a06100ca144acc4a9f62fe984446dd8a97692b6d6f3ba6ea351f4506bccf5b7d8e945b4a0b88326b9589075cc99
- SSDEEP
  
  768:wrGLctww30POw9mKv2oMumjeEgzHI/fCREC3rHvDUXM+GpcS63uHzbQsWGhM1xHy:xch3vwSbax3rHV6+HwsWGhG5JiBzQr3G
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2