General

  • Target

    4b86017dfce9c399597497ae871a9060_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240529-jpqp9agd23

  • MD5

    4b86017dfce9c399597497ae871a9060

  • SHA1

    c3c77e794b0f3fb5e8dd177d5a01dac3a6129a95

  • SHA256

    8ef824b2a6376bc7b3c4590a5c189c177801cbe8e6154da4c88e5d909f0eafa6

  • SHA512

    e9257895216c33696f0af16a682d20bfb860a82244f25e02f23af31036a7cff377d6e5237ea259687ef3cb8d729492d3948e96ff4637ac4c096fd92d0f63533a

  • SSDEEP

    384:ML7li/2z6q2DcEQvdhcJKLTp/NK9xauA:KCM/Q9cuA

Score
7/10

Malware Config

Targets

    • Target

      4b86017dfce9c399597497ae871a9060_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      4b86017dfce9c399597497ae871a9060

    • SHA1

      c3c77e794b0f3fb5e8dd177d5a01dac3a6129a95

    • SHA256

      8ef824b2a6376bc7b3c4590a5c189c177801cbe8e6154da4c88e5d909f0eafa6

    • SHA512

      e9257895216c33696f0af16a682d20bfb860a82244f25e02f23af31036a7cff377d6e5237ea259687ef3cb8d729492d3948e96ff4637ac4c096fd92d0f63533a

    • SSDEEP

      384:ML7li/2z6q2DcEQvdhcJKLTp/NK9xauA:KCM/Q9cuA

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks