3f6e4cc2c9dace0e72bab88d45cb70657051c6dc8e704498b8bca67e74c4d359 | Triage

Sharing

General

Target

95995d62eac2a1cf7fddf28f82e0c910_NeikiAnalytics.exe
Size

28KB
Sample

240525-ggvywsgd24
MD5

95995d62eac2a1cf7fddf28f82e0c910
SHA1

16bd8115a72370a95ebc4b0a592018d502581ca5
SHA256

3f6e4cc2c9dace0e72bab88d45cb70657051c6dc8e704498b8bca67e74c4d359
SHA512

c67432c3918a860413638404457e050ab1edfc5055f57d56dce1487881dfb98f09bef1aa0f0de335b53aa01d95e196d2fc13ab31766226ae6e391912a689d4c6
SSDEEP

768:6B7HBXFw82t2C80lyaZ4jX05RfX5XciJr48Bu:u7HZFwzlyaZTSi+8U

Score

7^/10

Malware Config

Targets

- Target
  
  95995d62eac2a1cf7fddf28f82e0c910_NeikiAnalytics.exe
- Size
  
  28KB
- MD5
  
  95995d62eac2a1cf7fddf28f82e0c910
- SHA1
  
  16bd8115a72370a95ebc4b0a592018d502581ca5
- SHA256
  
  3f6e4cc2c9dace0e72bab88d45cb70657051c6dc8e704498b8bca67e74c4d359
- SHA512
  
  c67432c3918a860413638404457e050ab1edfc5055f57d56dce1487881dfb98f09bef1aa0f0de335b53aa01d95e196d2fc13ab31766226ae6e391912a689d4c6
- SSDEEP
  
  768:6B7HBXFw82t2C80lyaZ4jX05RfX5XciJr48Bu:u7HZFwzlyaZTSi+8U
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2