Overview

overview

7

Static

static

3

76038c3520...cs.exe

windows7-x64

7

76038c3520...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    76038c3520272b84b6146eb5079ad240_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240523-cqvx2aad87

  • MD5

    76038c3520272b84b6146eb5079ad240

  • SHA1

    24346cda359af03ae6073c5990a892d57e1c815c

  • SHA256

    5e141b740cf20bd0c59ba1eb4e60e1c6e2158ad5a733f234fb725910854535b9

  • SHA512

    9a31a689abcc77a75feab573e5b6a9b2dd7801ba83ce8d756dbe03632dd142cb71ca64a80f0a0f2400e88a88822c1dd338a889e705640ee5cad5e3d1860d6d6e

  • SSDEEP

    384:PL7li/2zZq2DcEQvdQcJKLTp/NK9xa6+:jxMCQ9c6+

Score
7/10

Malware Config

Targets

    • Target

      76038c3520272b84b6146eb5079ad240_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      76038c3520272b84b6146eb5079ad240

    • SHA1

      24346cda359af03ae6073c5990a892d57e1c815c

    • SHA256

      5e141b740cf20bd0c59ba1eb4e60e1c6e2158ad5a733f234fb725910854535b9

    • SHA512

      9a31a689abcc77a75feab573e5b6a9b2dd7801ba83ce8d756dbe03632dd142cb71ca64a80f0a0f2400e88a88822c1dd338a889e705640ee5cad5e3d1860d6d6e

    • SSDEEP

      384:PL7li/2zZq2DcEQvdQcJKLTp/NK9xa6+:jxMCQ9c6+

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks