General

  • Target

    4e883f46f409d4dfee63020154e83710_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240529-k42azaad72

  • MD5

    4e883f46f409d4dfee63020154e83710

  • SHA1

    f05a4215b5b7c3c7435315614c17435ab688389b

  • SHA256

    ee039e4d55eec0b4ca3e5ca336b0f32a30f1c9bc3c40e6f603b84f75b37adff4

  • SHA512

    26fc7883755e1e0c0573fe84c4e36c9979f8836bcc2d144b793b7e70728cb6cea50fc71f8ad22fa7c86f7075b2141c1133ed8d51fa77d6b296b29e8956ddf2db

  • SSDEEP

    384:/L7li/2ztq2DcEQvdhcJKLTp/NK9xacg:ztM/Q9ccg

Score
7/10

Malware Config

Targets

    • Target

      4e883f46f409d4dfee63020154e83710_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      4e883f46f409d4dfee63020154e83710

    • SHA1

      f05a4215b5b7c3c7435315614c17435ab688389b

    • SHA256

      ee039e4d55eec0b4ca3e5ca336b0f32a30f1c9bc3c40e6f603b84f75b37adff4

    • SHA512

      26fc7883755e1e0c0573fe84c4e36c9979f8836bcc2d144b793b7e70728cb6cea50fc71f8ad22fa7c86f7075b2141c1133ed8d51fa77d6b296b29e8956ddf2db

    • SSDEEP

      384:/L7li/2ztq2DcEQvdhcJKLTp/NK9xacg:ztM/Q9ccg

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks