2b043402795f42820a17e91e70efa28d11c3e35784a7157f84454fbdc27213fe | Triage

Sharing

General

Target

6dbbcf30b2278c3bda50bcfc0d008840_NeikiAnalytics.exe
Size

36KB
Sample

240526-nvlqpshb4t
MD5

6dbbcf30b2278c3bda50bcfc0d008840
SHA1

8f75936b32934e15418740db4eba8ce5dac7f9a9
SHA256

2b043402795f42820a17e91e70efa28d11c3e35784a7157f84454fbdc27213fe
SHA512

1513ad0282caa8728027e652591d631a659188fc1b98d2bc0386e0ae78aa1cbf3a55052feb2045b7adb8e6ff52edb753c99e0a913b8b4f3486ccabc7066003d3
SSDEEP

768:U5ZFhzgxucryOmJQqO3VhDWiNlW+O96QhlqNU9jz8V:U57mucrFmJQqO3VhDWiC+i6QnjYV

Score

7^/10

Malware Config

Targets

- Target
  
  6dbbcf30b2278c3bda50bcfc0d008840_NeikiAnalytics.exe
- Size
  
  36KB
- MD5
  
  6dbbcf30b2278c3bda50bcfc0d008840
- SHA1
  
  8f75936b32934e15418740db4eba8ce5dac7f9a9
- SHA256
  
  2b043402795f42820a17e91e70efa28d11c3e35784a7157f84454fbdc27213fe
- SHA512
  
  1513ad0282caa8728027e652591d631a659188fc1b98d2bc0386e0ae78aa1cbf3a55052feb2045b7adb8e6ff52edb753c99e0a913b8b4f3486ccabc7066003d3
- SSDEEP
  
  768:U5ZFhzgxucryOmJQqO3VhDWiNlW+O96QhlqNU9jz8V:U57mucrFmJQqO3VhDWiC+i6QnjYV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2