630bf438ae2229fc91c74b4559630bee188806bebd144972e94ea52632cf98ec | Triage

Sharing

General

Target

db725a5c6511455466d71880eef45ba0_NeikiAnalytics.exe
Size

1.2MB
Sample

240524-y2ek3shf7x
MD5

db725a5c6511455466d71880eef45ba0
SHA1

0cd9376cd7ecfcd53e1920a83eba493e6a858122
SHA256

630bf438ae2229fc91c74b4559630bee188806bebd144972e94ea52632cf98ec
SHA512

72c893aae65685121c0e959e8950e59e4a9972cef9979de9e49942381d368b6a7ab8d550bad3ee0e145690ea0737b256521512c3e1000994a619aa922d52db64
SSDEEP

24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAL:IylFHUv6ReIt0jSrOt

Score

7^/10

Malware Config

Targets

- Target
  
  db725a5c6511455466d71880eef45ba0_NeikiAnalytics.exe
- Size
  
  1.2MB
- MD5
  
  db725a5c6511455466d71880eef45ba0
- SHA1
  
  0cd9376cd7ecfcd53e1920a83eba493e6a858122
- SHA256
  
  630bf438ae2229fc91c74b4559630bee188806bebd144972e94ea52632cf98ec
- SHA512
  
  72c893aae65685121c0e959e8950e59e4a9972cef9979de9e49942381d368b6a7ab8d550bad3ee0e145690ea0737b256521512c3e1000994a619aa922d52db64
- SSDEEP
  
  24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAL:IylFHUv6ReIt0jSrOt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2