General

  • Target

    21c5395552b457c1ae99468c98c49640_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240525-1d4amsbf55

  • MD5

    21c5395552b457c1ae99468c98c49640

  • SHA1

    08fe5b79461c2354328fa5b3df6f518fc004765a

  • SHA256

    031a2de46566c50bdd02a44607ead275e095dd9e85724b69e6a32d4bdded2fbd

  • SHA512

    2a3f5176a2d55a4156c498e956dcba80d55f3b3ef16fa9474a7330ae701af2085a121799b7b0786e6acf4dc17afde12d42de0df19f18abefd548f6f975f148bc

  • SSDEEP

    768:UTYY0b6K4Fd6eUCRGIIPP1y7oLacaIBLP3ner42Q:UEYtTFTUCxQ1aZr42Q

Score
10/10

Malware Config

Targets

    • Target

      21c5395552b457c1ae99468c98c49640_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      21c5395552b457c1ae99468c98c49640

    • SHA1

      08fe5b79461c2354328fa5b3df6f518fc004765a

    • SHA256

      031a2de46566c50bdd02a44607ead275e095dd9e85724b69e6a32d4bdded2fbd

    • SHA512

      2a3f5176a2d55a4156c498e956dcba80d55f3b3ef16fa9474a7330ae701af2085a121799b7b0786e6acf4dc17afde12d42de0df19f18abefd548f6f975f148bc

    • SSDEEP

      768:UTYY0b6K4Fd6eUCRGIIPP1y7oLacaIBLP3ner42Q:UEYtTFTUCxQ1aZr42Q

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks