General

  • Target

    606b5b081daaff8c5c2b793ef98f9bc0_NeikiAnalytics.exe

  • Size

    50KB

  • Sample

    240526-ekttwseb9w

  • MD5

    606b5b081daaff8c5c2b793ef98f9bc0

  • SHA1

    969148d73e8157dfa9d518afebe9b5f506e0d86a

  • SHA256

    25f4238b952e4423d27444b187950a3726d38b59f80875565bf97728b43ee99b

  • SHA512

    5e385e3f0815953ff61849a37f072f09008b78934818ad6a640ae2346077211d0272d97cd1864ad888c71f087cef85004850d80592b2b030f33e9715657ca464

  • SSDEEP

    1536:QhJ5U/ojT5F9c+kZrWSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:S5go/5F6TZSy

Score
10/10

Malware Config

Targets

    • Target

      606b5b081daaff8c5c2b793ef98f9bc0_NeikiAnalytics.exe

    • Size

      50KB

    • MD5

      606b5b081daaff8c5c2b793ef98f9bc0

    • SHA1

      969148d73e8157dfa9d518afebe9b5f506e0d86a

    • SHA256

      25f4238b952e4423d27444b187950a3726d38b59f80875565bf97728b43ee99b

    • SHA512

      5e385e3f0815953ff61849a37f072f09008b78934818ad6a640ae2346077211d0272d97cd1864ad888c71f087cef85004850d80592b2b030f33e9715657ca464

    • SSDEEP

      1536:QhJ5U/ojT5F9c+kZrWSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:S5go/5F6TZSy

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks