Overview

overview

8

Static

static

7

7879ace608...cs.exe

windows7-x64

8

7879ace608...cs.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    7879ace6085c61bdb03d01722b3f0ca0_NeikiAnalytics.exe

  • Size

    54KB

  • Sample

    240531-fs1g3sga9v

  • MD5

    7879ace6085c61bdb03d01722b3f0ca0

  • SHA1

    0b49bffcee00bd954a9256551e93648feca8b174

  • SHA256

    81a1ef4da9abbaedf248957f9c9146ff90af3fe5f773d67512c899d0657ac68b

  • SHA512

    a5bb0e890474d80542474bbdb924a9d11c9d7504a6736dfca35bab2e58e746b247a87ffc9159842fc096fee8d5812505076c55a03806f7e1ea56201bd76f295c

  • SSDEEP

    384:+SDuuOFZyUVpULCgDb2prxVTw24iJ6Al6z+yX0f0BT2EpmuKowBpyUUep4+2yiiR:3DcZyUpULCgod/J96ayXv/pWnnA2

Score
8/10
evasionupx

Malware Config

Targets

    • Target

      7879ace6085c61bdb03d01722b3f0ca0_NeikiAnalytics.exe

    • Size

      54KB

    • MD5

      7879ace6085c61bdb03d01722b3f0ca0

    • SHA1

      0b49bffcee00bd954a9256551e93648feca8b174

    • SHA256

      81a1ef4da9abbaedf248957f9c9146ff90af3fe5f773d67512c899d0657ac68b

    • SHA512

      a5bb0e890474d80542474bbdb924a9d11c9d7504a6736dfca35bab2e58e746b247a87ffc9159842fc096fee8d5812505076c55a03806f7e1ea56201bd76f295c

    • SSDEEP

      384:+SDuuOFZyUVpULCgDb2prxVTw24iJ6Al6z+yX0f0BT2EpmuKowBpyUUep4+2yiiR:3DcZyUpULCgod/J96ayXv/pWnnA2

    Score
    8/10
    evasionupx

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks