Overview

overview

7

Static

static

7

778d5770f4...cs.exe

windows7-x64

7

778d5770f4...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    778d5770f46d048ea92e00ca4318fe00_NeikiAnalytics.exe

  • Size

    39KB

  • Sample

    240523-cwes1aaf97

  • MD5

    778d5770f46d048ea92e00ca4318fe00

  • SHA1

    76d95a029fa72156e123cc37dfe03b2759729de9

  • SHA256

    abbcfe9efedb55e5ebabd658ed2cf4e1c7e48d0d4b4a06ebef7d36a9a15b9a29

  • SHA512

    3a1582244bd9504431ec480f479094fff7a1328ee87a25ae333a2f0226cb5982f59163c21240b8250df5bca57b84ec4b51c58dddc87f1c6ff5553955ef02491c

  • SSDEEP

    768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaB8:qDdFJy3QMOtEvwDpjjWMl7TdG

Score
7/10
upx

Malware Config

Targets

    • Target

      778d5770f46d048ea92e00ca4318fe00_NeikiAnalytics.exe

    • Size

      39KB

    • MD5

      778d5770f46d048ea92e00ca4318fe00

    • SHA1

      76d95a029fa72156e123cc37dfe03b2759729de9

    • SHA256

      abbcfe9efedb55e5ebabd658ed2cf4e1c7e48d0d4b4a06ebef7d36a9a15b9a29

    • SHA512

      3a1582244bd9504431ec480f479094fff7a1328ee87a25ae333a2f0226cb5982f59163c21240b8250df5bca57b84ec4b51c58dddc87f1c6ff5553955ef02491c

    • SSDEEP

      768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaB8:qDdFJy3QMOtEvwDpjjWMl7TdG

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks