1857e3e7214e33048111205cabdc8e2901fce168e1d7368518b5c4fe48be1442 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a7a5f34831d45e272e39d83163af960_NeikiAnalytics.exe
Size

28KB
Sample

240523-c7ra6sba6s
MD5

7a7a5f34831d45e272e39d83163af960
SHA1

3bd4eef24275b71d505f11d42adc6d9c784f1428
SHA256

1857e3e7214e33048111205cabdc8e2901fce168e1d7368518b5c4fe48be1442
SHA512

82ed42e27505f062fce9154a236562f7a5a1e8e5d68ccd3ad31bc511b73537e1e83cbedd9d6d57cb136b631fde4d20f53d1d70cdb8aa8af4186a8ce9b8e0b8c6
SSDEEP

384:fY/7iMmQgVC+02JWuCSPmSQTebw/UqF/f6jlWuVyp/lW+Nmk:y12JTPRQTeZqVf6jlhIprwk

Score

7^/10

Malware Config

Targets

- Target
  
  7a7a5f34831d45e272e39d83163af960_NeikiAnalytics.exe
- Size
  
  28KB
- MD5
  
  7a7a5f34831d45e272e39d83163af960
- SHA1
  
  3bd4eef24275b71d505f11d42adc6d9c784f1428
- SHA256
  
  1857e3e7214e33048111205cabdc8e2901fce168e1d7368518b5c4fe48be1442
- SHA512
  
  82ed42e27505f062fce9154a236562f7a5a1e8e5d68ccd3ad31bc511b73537e1e83cbedd9d6d57cb136b631fde4d20f53d1d70cdb8aa8af4186a8ce9b8e0b8c6
- SSDEEP
  
  384:fY/7iMmQgVC+02JWuCSPmSQTebw/UqF/f6jlWuVyp/lW+Nmk:y12JTPRQTeZqVf6jlhIprwk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2