3737dcf7173ed70433c62cf7c5e2d5648935307de0544477d264b2b75f45ea49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

327641769a04d17eac647f8f044a3920_NeikiAnalytics.exe
Size

1.2MB
Sample

240528-e32bpafg22
MD5

327641769a04d17eac647f8f044a3920
SHA1

19fb0c54035225a0f449d7a7b12d2e872484e68b
SHA256

3737dcf7173ed70433c62cf7c5e2d5648935307de0544477d264b2b75f45ea49
SHA512

d42e2c5363e0a8a4257802e8b7a4b5ed82ce0f7db20f1762df15007f199454bcb84aed905686e2b3c0e98e7064726cab2fc3111c90074d62854fe4b78458158b
SSDEEP

24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAiR:IylFHUv6ReIt0jSrOm

Score

7^/10

Malware Config

Targets

- Target
  
  327641769a04d17eac647f8f044a3920_NeikiAnalytics.exe
- Size
  
  1.2MB
- MD5
  
  327641769a04d17eac647f8f044a3920
- SHA1
  
  19fb0c54035225a0f449d7a7b12d2e872484e68b
- SHA256
  
  3737dcf7173ed70433c62cf7c5e2d5648935307de0544477d264b2b75f45ea49
- SHA512
  
  d42e2c5363e0a8a4257802e8b7a4b5ed82ce0f7db20f1762df15007f199454bcb84aed905686e2b3c0e98e7064726cab2fc3111c90074d62854fe4b78458158b
- SSDEEP
  
  24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAiR:IylFHUv6ReIt0jSrOm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2