7cda6cffe0ab7a11d7b37b4e56957665a616b5077d95af6258a06a21d03f2a0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5da73345dbfedae015d137f5e9d2d6e0_NeikiAnalytics.exe
Size

78KB
Sample

240530-bdj5bshe72
MD5

5da73345dbfedae015d137f5e9d2d6e0
SHA1

6694b64a2d3a73ceea64903e7eea26ba81a71b59
SHA256

7cda6cffe0ab7a11d7b37b4e56957665a616b5077d95af6258a06a21d03f2a0a
SHA512

faba363c0ec40a1c502abd16efd4b32e99b0978974defb5aa7fd7c6fd7affc936c1e9e90f1ec03f197553f9fab882e88cc38130f1a7c74ee32d469c57d43b88f
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUe:ZVxkGOtEvwDpjcaC

Score

7^/10

Malware Config

Targets

- Target
  
  5da73345dbfedae015d137f5e9d2d6e0_NeikiAnalytics.exe
- Size
  
  78KB
- MD5
  
  5da73345dbfedae015d137f5e9d2d6e0
- SHA1
  
  6694b64a2d3a73ceea64903e7eea26ba81a71b59
- SHA256
  
  7cda6cffe0ab7a11d7b37b4e56957665a616b5077d95af6258a06a21d03f2a0a
- SHA512
  
  faba363c0ec40a1c502abd16efd4b32e99b0978974defb5aa7fd7c6fd7affc936c1e9e90f1ec03f197553f9fab882e88cc38130f1a7c74ee32d469c57d43b88f
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUe:ZVxkGOtEvwDpjcaC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2