3fac860c4d0ad26814e8ec13db96454f734ed47b34a38c2d248584d270d6e406 | Triage

Sharing

General

Target

dcedfaac71341b86e1b4e974a5105f10_NeikiAnalytics.exe
Size

30KB
Sample

240526-pjq2qacg43
MD5

dcedfaac71341b86e1b4e974a5105f10
SHA1

4a67463f377d59b421656964bc0815721c83b234
SHA256

3fac860c4d0ad26814e8ec13db96454f734ed47b34a38c2d248584d270d6e406
SHA512

2e42584ad5ed768581aa8b43ebb9d95afd9b48b8adea3bab816041c3f82be39a1dfe8738c2f0fdd3b960fbfad26a11c58a8c662a3bc54ba94c237839cd3d3af0
SSDEEP

384:iTjB4f0y4lSqCHHffYZ5SKNOI5pbzCZYCKdKj+RYS9ON2tSUCu8FoE692yor:Q406H/0PbzCdj+Rh9OotSbxFTGtk

Score

7^/10

Malware Config

Targets

- Target
  
  dcedfaac71341b86e1b4e974a5105f10_NeikiAnalytics.exe
- Size
  
  30KB
- MD5
  
  dcedfaac71341b86e1b4e974a5105f10
- SHA1
  
  4a67463f377d59b421656964bc0815721c83b234
- SHA256
  
  3fac860c4d0ad26814e8ec13db96454f734ed47b34a38c2d248584d270d6e406
- SHA512
  
  2e42584ad5ed768581aa8b43ebb9d95afd9b48b8adea3bab816041c3f82be39a1dfe8738c2f0fdd3b960fbfad26a11c58a8c662a3bc54ba94c237839cd3d3af0
- SSDEEP
  
  384:iTjB4f0y4lSqCHHffYZ5SKNOI5pbzCZYCKdKj+RYS9ON2tSUCu8FoE692yor:Q406H/0PbzCdj+Rh9OotSbxFTGtk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2