7c93b8defb622cef5e0516b712ca10c4131cbf418cedbb146db9db8bfd2be13f | Triage

Sharing

General

Target

3772b0874e31e1abb5b7c87080a2e460_NeikiAnalytics.exe
Size

5KB
Sample

240529-d3jafagh7x
MD5

3772b0874e31e1abb5b7c87080a2e460
SHA1

f7e8d2a2f1a9d8d1fae2d623db87f77927e033c6
SHA256

7c93b8defb622cef5e0516b712ca10c4131cbf418cedbb146db9db8bfd2be13f
SHA512

0bd97846e72a1f7b60ef1894933e324e6c1ced586d9d91d1a6965c7679f7cda6e79ff77416e6a0b89c3e879ec303119d0bbafb9a5ea2c4b00271ba13735f0fe8
SSDEEP

48:qd7ZUoHvjBrmJVeDhMRdO//GJGjqnijDGrsEVnQBG/RA8lGUZ2CS7jLyUF1W:1mRjDhcmZjxAnQWRIUZ2CmXY

Score

7^/10

Malware Config

Targets

- Target
  
  3772b0874e31e1abb5b7c87080a2e460_NeikiAnalytics.exe
- Size
  
  5KB
- MD5
  
  3772b0874e31e1abb5b7c87080a2e460
- SHA1
  
  f7e8d2a2f1a9d8d1fae2d623db87f77927e033c6
- SHA256
  
  7c93b8defb622cef5e0516b712ca10c4131cbf418cedbb146db9db8bfd2be13f
- SHA512
  
  0bd97846e72a1f7b60ef1894933e324e6c1ced586d9d91d1a6965c7679f7cda6e79ff77416e6a0b89c3e879ec303119d0bbafb9a5ea2c4b00271ba13735f0fe8
- SSDEEP
  
  48:qd7ZUoHvjBrmJVeDhMRdO//GJGjqnijDGrsEVnQBG/RA8lGUZ2CS7jLyUF1W:1mRjDhcmZjxAnQWRIUZ2CmXY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2