7c20405e420b7beca72ce9a20c4f84455b100ea10ec72b54aa87217dbf83ae88 | Triage

Sharing

General

Target

6e37700eb7a25233aabeecae590a8050_NeikiAnalytics.exe
Size

65KB
Sample

240523-byg6gagg2x
MD5

6e37700eb7a25233aabeecae590a8050
SHA1

7167bc5801f48b87ecf4646a1d00257f67a8fcd4
SHA256

7c20405e420b7beca72ce9a20c4f84455b100ea10ec72b54aa87217dbf83ae88
SHA512

4a32bfb9c9e6f1bd78ea3ada086778afbe0269a2c38f9f376ed12e0ee57313813e00d8c418a1be6c214a2eaf92602166616661713dcc7a0dc73caec22e27fc4f
SSDEEP

768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6k:Zr3Z5IfQIR81ad5yX6k

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  6e37700eb7a25233aabeecae590a8050_NeikiAnalytics.exe
- Size
  
  65KB
- MD5
  
  6e37700eb7a25233aabeecae590a8050
- SHA1
  
  7167bc5801f48b87ecf4646a1d00257f67a8fcd4
- SHA256
  
  7c20405e420b7beca72ce9a20c4f84455b100ea10ec72b54aa87217dbf83ae88
- SHA512
  
  4a32bfb9c9e6f1bd78ea3ada086778afbe0269a2c38f9f376ed12e0ee57313813e00d8c418a1be6c214a2eaf92602166616661713dcc7a0dc73caec22e27fc4f
- SSDEEP
  
  768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6k:Zr3Z5IfQIR81ad5yX6k
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2