65ff6f1aed602519db868dc1711b31c929a67f75da9a5901f4d90f4305c3424a | Triage

Sharing

General

Target

44ee785755237b1d860f4320d1d92d60_NeikiAnalytics.exe
Size

42KB
Sample

240528-p97gdsfe63
MD5

44ee785755237b1d860f4320d1d92d60
SHA1

0783001bfaf167f37b5f5eea2f59124a58714290
SHA256

65ff6f1aed602519db868dc1711b31c929a67f75da9a5901f4d90f4305c3424a
SHA512

5279ac0d2b8f8d366af37b77b3e91c25f948548dc248dfbabf02f02d94b343ff63db1df4d55702e05ea0b121bb622b4ad0ff6d7a3dba12a92361689eca065c9f
SSDEEP

768:DaP8mckxIrafCtdgI2MyzNtRQtONlIwoHNV2XBFV72B4lA7cN5Ze6/OVgXqCL0hu:Da0mc7ufCtdgI2MyzNtRQtONlIwoHNVS

Score

7^/10

Malware Config

Targets

- Target
  
  44ee785755237b1d860f4320d1d92d60_NeikiAnalytics.exe
- Size
  
  42KB
- MD5
  
  44ee785755237b1d860f4320d1d92d60
- SHA1
  
  0783001bfaf167f37b5f5eea2f59124a58714290
- SHA256
  
  65ff6f1aed602519db868dc1711b31c929a67f75da9a5901f4d90f4305c3424a
- SHA512
  
  5279ac0d2b8f8d366af37b77b3e91c25f948548dc248dfbabf02f02d94b343ff63db1df4d55702e05ea0b121bb622b4ad0ff6d7a3dba12a92361689eca065c9f
- SSDEEP
  
  768:DaP8mckxIrafCtdgI2MyzNtRQtONlIwoHNV2XBFV72B4lA7cN5Ze6/OVgXqCL0hu:Da0mc7ufCtdgI2MyzNtRQtONlIwoHNVS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2