98aaf51eeb14c4a8b6e150938a742bf4d4dfa0e404aff84ff33de669bb8639ab | Triage

Sharing

General

Target

5980e79d34eabad2ba624370d4189740_NeikiAnalytics.exe
Size

33KB
Sample

240529-2zvfasdb6v
MD5

5980e79d34eabad2ba624370d4189740
SHA1

2dee90e1be46aec11e5fdd12a7c2d85cf102e2a0
SHA256

98aaf51eeb14c4a8b6e150938a742bf4d4dfa0e404aff84ff33de669bb8639ab
SHA512

cc2d7050c0cc077d4aa10c4041f618ad72c3508a2ba56b61ad9b27b124f8fb7d94434948d726454905dcad4d5cde564dadf4b0d6af9195d7d8a122db05f437d1
SSDEEP

384:MApc8m4e0ovQak4JI341Cdabnk6hJPXAZ5F:MApQr0ovdFJI34/Tk6hJPXwF

Score

7^/10

Malware Config

Targets

- Target
  
  5980e79d34eabad2ba624370d4189740_NeikiAnalytics.exe
- Size
  
  33KB
- MD5
  
  5980e79d34eabad2ba624370d4189740
- SHA1
  
  2dee90e1be46aec11e5fdd12a7c2d85cf102e2a0
- SHA256
  
  98aaf51eeb14c4a8b6e150938a742bf4d4dfa0e404aff84ff33de669bb8639ab
- SHA512
  
  cc2d7050c0cc077d4aa10c4041f618ad72c3508a2ba56b61ad9b27b124f8fb7d94434948d726454905dcad4d5cde564dadf4b0d6af9195d7d8a122db05f437d1
- SSDEEP
  
  384:MApc8m4e0ovQak4JI341Cdabnk6hJPXAZ5F:MApQr0ovdFJI34/Tk6hJPXwF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2