9a095077100934427dfcdd15bfad4e44ef5f0f5fbd68fdddb5def44f3048f258 | Triage

Sharing

General

Target

74e536ffe0d034810fd68dfd32897860_NeikiAnalytics.exe
Size

35KB
Sample

240523-clckwsab87
MD5

74e536ffe0d034810fd68dfd32897860
SHA1

429ca86cda7492ac38ee1bd1c2920ad0e153b047
SHA256

9a095077100934427dfcdd15bfad4e44ef5f0f5fbd68fdddb5def44f3048f258
SHA512

a636198425d0db872a9cf03aa9470f8d3c19cd60cbecf5fdd3ab0a43fc77036ce10e9979ecde433be0497b01d9decc7039b7dd896c2f57d5cfdfeb71e1b3c17a
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5Pp7Jf:bxNrC7kYo1Fxf2rY1df

Score

7^/10

Malware Config

Targets

- Target
  
  74e536ffe0d034810fd68dfd32897860_NeikiAnalytics.exe
- Size
  
  35KB
- MD5
  
  74e536ffe0d034810fd68dfd32897860
- SHA1
  
  429ca86cda7492ac38ee1bd1c2920ad0e153b047
- SHA256
  
  9a095077100934427dfcdd15bfad4e44ef5f0f5fbd68fdddb5def44f3048f258
- SHA512
  
  a636198425d0db872a9cf03aa9470f8d3c19cd60cbecf5fdd3ab0a43fc77036ce10e9979ecde433be0497b01d9decc7039b7dd896c2f57d5cfdfeb71e1b3c17a
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5Pp7Jf:bxNrC7kYo1Fxf2rY1df
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2