11d19b36b4c252236771151161f899e2031156da7818b98db4b0301f5a1dae71 | Triage

Sharing

General

Target

7b068950e6b869b40420b8965cd097d0_NeikiAnalytics.exe
Size

5KB
Sample

240526-g3lmcahf7y
MD5

7b068950e6b869b40420b8965cd097d0
SHA1

e8475d1f93acb6860fc21327d9a07f21e3bf7c08
SHA256

11d19b36b4c252236771151161f899e2031156da7818b98db4b0301f5a1dae71
SHA512

3045e6c7d445374eb7bb27c9061fbdf33665d1f29a3358d22ca3ca07a900caadd62c75c35422132c8b83e2e1fff419f45fa833ad752fd67c42eaeaa8266b928f
SSDEEP

48:6hecL4Tct69GpIvLHmCyYA+qH6RZrdUzEVnQBG/RACalGUx2CS7DD:Q8YtFIvLGaANHadwAnQWRRUx2CqD

Score

7^/10

Malware Config

Targets

- Target
  
  7b068950e6b869b40420b8965cd097d0_NeikiAnalytics.exe
- Size
  
  5KB
- MD5
  
  7b068950e6b869b40420b8965cd097d0
- SHA1
  
  e8475d1f93acb6860fc21327d9a07f21e3bf7c08
- SHA256
  
  11d19b36b4c252236771151161f899e2031156da7818b98db4b0301f5a1dae71
- SHA512
  
  3045e6c7d445374eb7bb27c9061fbdf33665d1f29a3358d22ca3ca07a900caadd62c75c35422132c8b83e2e1fff419f45fa833ad752fd67c42eaeaa8266b928f
- SSDEEP
  
  48:6hecL4Tct69GpIvLHmCyYA+qH6RZrdUzEVnQBG/RACalGUx2CS7DD:Q8YtFIvLGaANHadwAnQWRRUx2CqD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2