e39b0028b987b877c54be27d2ce2c6a961343e82b68dca3f0a1afbfb56e02868 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b341d805fc4efb5943569217840b410_NeikiAnalytics.exe
Size

3KB
Sample

240526-g4jjdahg2s
MD5

7b341d805fc4efb5943569217840b410
SHA1

aec03bba5d93ef21c4edb3e7f240c1d0468618ad
SHA256

e39b0028b987b877c54be27d2ce2c6a961343e82b68dca3f0a1afbfb56e02868
SHA512

a46976a956e7d999d47b7aff3e2c0d5060e8e598ccf8b0c0e7dbcc64b2b8a9f1eea1281defb9848a948d17b379b8bd566e9964d032a8147b5c37beca59d8b491

Score

7^/10

Malware Config

Targets

- Target
  
  7b341d805fc4efb5943569217840b410_NeikiAnalytics.exe
- Size
  
  3KB
- MD5
  
  7b341d805fc4efb5943569217840b410
- SHA1
  
  aec03bba5d93ef21c4edb3e7f240c1d0468618ad
- SHA256
  
  e39b0028b987b877c54be27d2ce2c6a961343e82b68dca3f0a1afbfb56e02868
- SHA512
  
  a46976a956e7d999d47b7aff3e2c0d5060e8e598ccf8b0c0e7dbcc64b2b8a9f1eea1281defb9848a948d17b379b8bd566e9964d032a8147b5c37beca59d8b491
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2