aee8ce7978d4f39b6ec71c0c68ea4a510a9824e1c448f2fa0d3772394bce7575 | Triage

Sharing

General

Target

c11f71e7b9b3690bfe225f1137144620_NeikiAnalytics.exe
Size

65KB
Sample

240530-lqds7aed22
MD5

c11f71e7b9b3690bfe225f1137144620
SHA1

5a382756be9e4cea4276478be6b6eb87762ea67c
SHA256

aee8ce7978d4f39b6ec71c0c68ea4a510a9824e1c448f2fa0d3772394bce7575
SHA512

4270fb2850de82f51e8d50d1f78afadaa3812409a548ccbbe59f28e609a6eb2b5ed73ba046cdd9b6f43e6bb842260ab3c0a2414d1476f2184f0b7e8cf8b5edce
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniDSAa6:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7d

Score

7^/10

Malware Config

Targets

- Target
  
  c11f71e7b9b3690bfe225f1137144620_NeikiAnalytics.exe
- Size
  
  65KB
- MD5
  
  c11f71e7b9b3690bfe225f1137144620
- SHA1
  
  5a382756be9e4cea4276478be6b6eb87762ea67c
- SHA256
  
  aee8ce7978d4f39b6ec71c0c68ea4a510a9824e1c448f2fa0d3772394bce7575
- SHA512
  
  4270fb2850de82f51e8d50d1f78afadaa3812409a548ccbbe59f28e609a6eb2b5ed73ba046cdd9b6f43e6bb842260ab3c0a2414d1476f2184f0b7e8cf8b5edce
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniDSAa6:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7d
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2