244fabab5761d4df2043ccbd35271b2c82aa7a4074aa483ba5f110ccce148034 | Triage

Sharing

General

Target

46693290b8e2ff4817dd8fb83e83a0c0_NeikiAnalytics.exe
Size

84KB
Sample

240526-kflklsdc77
MD5

46693290b8e2ff4817dd8fb83e83a0c0
SHA1

d3c8f3b6b8ef029f4297020b5a9b4e0c28bf5bee
SHA256

244fabab5761d4df2043ccbd35271b2c82aa7a4074aa483ba5f110ccce148034
SHA512

a54840de107e0bb451c5f685a3c0af0cadb8acfbb83f23aa25aa1e5927fd7c43d074cde5ac4fd50d87a4db3871918158baf49402f9d517c3d33528f7e63d7e2a
SSDEEP

768:QYHfYErkXzFlB8hRWXZUdqXnzdPLqXbC5t+1l7dExNvI:9rkXjmXABTqXWt+1RdE8

Score

7^/10

Malware Config

Targets

- Target
  
  46693290b8e2ff4817dd8fb83e83a0c0_NeikiAnalytics.exe
- Size
  
  84KB
- MD5
  
  46693290b8e2ff4817dd8fb83e83a0c0
- SHA1
  
  d3c8f3b6b8ef029f4297020b5a9b4e0c28bf5bee
- SHA256
  
  244fabab5761d4df2043ccbd35271b2c82aa7a4074aa483ba5f110ccce148034
- SHA512
  
  a54840de107e0bb451c5f685a3c0af0cadb8acfbb83f23aa25aa1e5927fd7c43d074cde5ac4fd50d87a4db3871918158baf49402f9d517c3d33528f7e63d7e2a
- SSDEEP
  
  768:QYHfYErkXzFlB8hRWXZUdqXnzdPLqXbC5t+1l7dExNvI:9rkXjmXABTqXWt+1RdE8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2