10d62869c9dacfbc1b4b79c522641f91b0679d9b6eb3c70926243997798ec273 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6870d1c2aa5f004cd8f20fe734decf70_NeikiAnalytics.exe
Size

24KB
Sample

240530-hbf38aad94
MD5

6870d1c2aa5f004cd8f20fe734decf70
SHA1

3d1899640229c58e69ffa98fdb48d5feca65b6f6
SHA256

10d62869c9dacfbc1b4b79c522641f91b0679d9b6eb3c70926243997798ec273
SHA512

7815c30e6957a1b5f4fb2eaea043b5d161d27b734f3e1a68d287b6b210122447e3f255310a559db81b6b25c81db0773e03031b352e60ec1a4b6dccc356c5cdee
SSDEEP

384:9cd6w+NomiUBQZVoRiCKKtYh2pNvdAajICCKm7QUaVbs6hCmHmySd1leLMJNmG2:qIomvQ7oTOUVAaMiiAAmHekMJNM

Score

7^/10

Malware Config

Targets

- Target
  
  6870d1c2aa5f004cd8f20fe734decf70_NeikiAnalytics.exe
- Size
  
  24KB
- MD5
  
  6870d1c2aa5f004cd8f20fe734decf70
- SHA1
  
  3d1899640229c58e69ffa98fdb48d5feca65b6f6
- SHA256
  
  10d62869c9dacfbc1b4b79c522641f91b0679d9b6eb3c70926243997798ec273
- SHA512
  
  7815c30e6957a1b5f4fb2eaea043b5d161d27b734f3e1a68d287b6b210122447e3f255310a559db81b6b25c81db0773e03031b352e60ec1a4b6dccc356c5cdee
- SSDEEP
  
  384:9cd6w+NomiUBQZVoRiCKKtYh2pNvdAajICCKm7QUaVbs6hCmHmySd1leLMJNmG2:qIomvQ7oTOUVAaMiiAAmHekMJNM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2