1fca4eb1e34a7d77afe3bb42964ea948babd89717c54b2dc160d0584d6fe502a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38eb45f7a1d8bb708c9934f096a21840_NeikiAnalytics.exe
Size

60KB
Sample

240525-3vjzfafa3x
MD5

38eb45f7a1d8bb708c9934f096a21840
SHA1

b92618f745db252dc3652e91d2c9d1a7d8f43102
SHA256

1fca4eb1e34a7d77afe3bb42964ea948babd89717c54b2dc160d0584d6fe502a
SHA512

43f0af97dfd543b99009e5f946752fe57c662ebc75cfd20be7bf6b5003876ea291aed8d8e76f5eb315ba6de3c10e66efcec9948963fc7760c47f30fa16f816c7
SSDEEP

768:4UvKalltb4dRAQGgXkfyWjbFRbM1nQniO1ZOxf7HhBBhtl+zE7+:4IT44gXkfyWjZRwp6/Orhtl+zEK

Score

7^/10

Malware Config

Targets

- Target
  
  38eb45f7a1d8bb708c9934f096a21840_NeikiAnalytics.exe
- Size
  
  60KB
- MD5
  
  38eb45f7a1d8bb708c9934f096a21840
- SHA1
  
  b92618f745db252dc3652e91d2c9d1a7d8f43102
- SHA256
  
  1fca4eb1e34a7d77afe3bb42964ea948babd89717c54b2dc160d0584d6fe502a
- SHA512
  
  43f0af97dfd543b99009e5f946752fe57c662ebc75cfd20be7bf6b5003876ea291aed8d8e76f5eb315ba6de3c10e66efcec9948963fc7760c47f30fa16f816c7
- SSDEEP
  
  768:4UvKalltb4dRAQGgXkfyWjbFRbM1nQniO1ZOxf7HhBBhtl+zE7+:4IT44gXkfyWjZRwp6/Orhtl+zEK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2