d5d926ef4e56efd7510fbf94ea955b9ebf9ee1de4f9720527fb014daa38cbfac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03b06eb29597be1b243ebacfb6b213c0_NeikiAnalytics.exe
Size

1.2MB
Sample

240525-wrcydsch7z
MD5

03b06eb29597be1b243ebacfb6b213c0
SHA1

b4bd0279a8c3f3527ea8ffde660c5a5cac7b4609
SHA256

d5d926ef4e56efd7510fbf94ea955b9ebf9ee1de4f9720527fb014daa38cbfac
SHA512

6ac61d751f56ada3c49a504d87eaf01e1c6e062956d03d4374f74ab625617bc3b95ae659983159d1c334d2cdc34b50deff9a97e58b9163f6665fda133e5eac3e
SSDEEP

24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAi:IylFHUv6ReIt0jSrOY

Score

7^/10

Malware Config

Targets

- Target
  
  03b06eb29597be1b243ebacfb6b213c0_NeikiAnalytics.exe
- Size
  
  1.2MB
- MD5
  
  03b06eb29597be1b243ebacfb6b213c0
- SHA1
  
  b4bd0279a8c3f3527ea8ffde660c5a5cac7b4609
- SHA256
  
  d5d926ef4e56efd7510fbf94ea955b9ebf9ee1de4f9720527fb014daa38cbfac
- SHA512
  
  6ac61d751f56ada3c49a504d87eaf01e1c6e062956d03d4374f74ab625617bc3b95ae659983159d1c334d2cdc34b50deff9a97e58b9163f6665fda133e5eac3e
- SSDEEP
  
  24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAi:IylFHUv6ReIt0jSrOY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2