bf696b12e98f9a1a0276f66220216cf2c582463d9e2353f35c6f763fa5e2df9f | Triage

Sharing

General

Target

06509d183ce1515c24b41d849af40f40_NeikiAnalytics.exe
Size

60KB
Sample

240527-we54eacb6z
MD5

06509d183ce1515c24b41d849af40f40
SHA1

2573680fc35f3d4524040b8524942067cfe08417
SHA256

bf696b12e98f9a1a0276f66220216cf2c582463d9e2353f35c6f763fa5e2df9f
SHA512

e2206e7c4be66e900f7c45f22257ef16470aca6f77bb792b448a56a74f57a6e4aa4756b0eac6c8a29a26bd8ee94b4377e99bef6dc73c548a5d8a6245213bf5a6
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHXM:btng54SMLr+/AO/kIhfoKMHdF

Score

7^/10

Malware Config

Targets

- Target
  
  06509d183ce1515c24b41d849af40f40_NeikiAnalytics.exe
- Size
  
  60KB
- MD5
  
  06509d183ce1515c24b41d849af40f40
- SHA1
  
  2573680fc35f3d4524040b8524942067cfe08417
- SHA256
  
  bf696b12e98f9a1a0276f66220216cf2c582463d9e2353f35c6f763fa5e2df9f
- SHA512
  
  e2206e7c4be66e900f7c45f22257ef16470aca6f77bb792b448a56a74f57a6e4aa4756b0eac6c8a29a26bd8ee94b4377e99bef6dc73c548a5d8a6245213bf5a6
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHXM:btng54SMLr+/AO/kIhfoKMHdF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2