1cb59128e37f6c17b36518d7180436f1c5a740322e681c8056205dd22bb6e277 | Triage

Sharing

General

Target

3bc00bafd50df64628ac9c2426e7b400_NeikiAnalytics.exe
Size

37KB
Sample

240528-knfdkaea79
MD5

3bc00bafd50df64628ac9c2426e7b400
SHA1

a0bc12faf33e2714c0d68ca685481cb033124cc8
SHA256

1cb59128e37f6c17b36518d7180436f1c5a740322e681c8056205dd22bb6e277
SHA512

4a76a3c3c8de4cf2bee94cb8ffb997f5cc33f8fcf3764572f5d79b4f33ba806dae2c72c332317574667aa7e3deb12589c502b6a3d088a7136fef5f337dca5e71
SSDEEP

768:U5ZFhzgxucryOmJQqO3VhDWiNlW+O96QhlqNU9jlF9jv0:U57mucrFmJQqO3VhDWiC+i6QnjPBv0

Score

7^/10

Malware Config

Targets

- Target
  
  3bc00bafd50df64628ac9c2426e7b400_NeikiAnalytics.exe
- Size
  
  37KB
- MD5
  
  3bc00bafd50df64628ac9c2426e7b400
- SHA1
  
  a0bc12faf33e2714c0d68ca685481cb033124cc8
- SHA256
  
  1cb59128e37f6c17b36518d7180436f1c5a740322e681c8056205dd22bb6e277
- SHA512
  
  4a76a3c3c8de4cf2bee94cb8ffb997f5cc33f8fcf3764572f5d79b4f33ba806dae2c72c332317574667aa7e3deb12589c502b6a3d088a7136fef5f337dca5e71
- SSDEEP
  
  768:U5ZFhzgxucryOmJQqO3VhDWiNlW+O96QhlqNU9jlF9jv0:U57mucrFmJQqO3VhDWiC+i6QnjPBv0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2