3d3d56f07ed5f8f3f359f11d82f33edc708ef40a162a42f6592fa40bd031e365 | Triage

Sharing

General

Target

8c6af732884a4b34c16f1426cff203a0_NeikiAnalytics.exe
Size

5KB
Sample

240601-efe5yahf27
MD5

8c6af732884a4b34c16f1426cff203a0
SHA1

bce0fea3e7c282ddca054fe43ad94cad99cc5053
SHA256

3d3d56f07ed5f8f3f359f11d82f33edc708ef40a162a42f6592fa40bd031e365
SHA512

e83d69fb56c0f6bcd498e898f8e3fd408f1795f7db47f8ab2c04cd36cac872f73f07a1adac1d5677422a7539d0fc54699183c653518963c8b8c8532d422ca745
SSDEEP

48:q01xRAmcRB/G9OzR3mePcra1rsHB/VnC/RAxUl2CS70ALNx:FqhLzR2aceuHnnwR2Ul2ClAhx

Score

7^/10

Malware Config

Targets

- Target
  
  8c6af732884a4b34c16f1426cff203a0_NeikiAnalytics.exe
- Size
  
  5KB
- MD5
  
  8c6af732884a4b34c16f1426cff203a0
- SHA1
  
  bce0fea3e7c282ddca054fe43ad94cad99cc5053
- SHA256
  
  3d3d56f07ed5f8f3f359f11d82f33edc708ef40a162a42f6592fa40bd031e365
- SHA512
  
  e83d69fb56c0f6bcd498e898f8e3fd408f1795f7db47f8ab2c04cd36cac872f73f07a1adac1d5677422a7539d0fc54699183c653518963c8b8c8532d422ca745
- SSDEEP
  
  48:q01xRAmcRB/G9OzR3mePcra1rsHB/VnC/RAxUl2CS70ALNx:FqhLzR2aceuHnnwR2Ul2ClAhx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2