General

  • Target

    0e9b2d207786e790458b449b7c896480_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240527-xqdc7sec7w

  • MD5

    0e9b2d207786e790458b449b7c896480

  • SHA1

    63d49e880031d1347a4c28c893df3837742b6593

  • SHA256

    aa6846cc280e66aadbb93a413a039a08e798f97146a2a4e5e93882496770c38e

  • SHA512

    adf9f385fedf16f93c7d16f652f3c44bd02b44adcc8726b5a79d5422b5f64ed3ef82a07ed3ea645b54d1ec70e6cff52890e1d4542844d9406ec235c3a19a4270

  • SSDEEP

    384:VL7li/2zBq2DcEQvdhcJKLTp/NK9xa+P:1JM/Q9c+P

Score
7/10

Malware Config

Targets

    • Target

      0e9b2d207786e790458b449b7c896480_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      0e9b2d207786e790458b449b7c896480

    • SHA1

      63d49e880031d1347a4c28c893df3837742b6593

    • SHA256

      aa6846cc280e66aadbb93a413a039a08e798f97146a2a4e5e93882496770c38e

    • SHA512

      adf9f385fedf16f93c7d16f652f3c44bd02b44adcc8726b5a79d5422b5f64ed3ef82a07ed3ea645b54d1ec70e6cff52890e1d4542844d9406ec235c3a19a4270

    • SSDEEP

      384:VL7li/2zBq2DcEQvdhcJKLTp/NK9xa+P:1JM/Q9c+P

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks