General

  • Target

    909f52973d2ab55042122458f3b48400_NeikiAnalytics.exe

  • Size

    124KB

  • Sample

    240601-g337dsce5w

  • MD5

    909f52973d2ab55042122458f3b48400

  • SHA1

    4de8223d07234e73bd74372ef1da04c67c980032

  • SHA256

    03feb2b1220fef38462a53e46cce41740dc32853ad841f2be5d8481b3c35c431

  • SHA512

    854fa96c862ea607d10b09d91ff6ba6b90b248f2e5b2965087b76557e8b71f4bf5fa2989c7ace1ab5025244ef75c0a922ed8d54a84ec91fddb39cc7a8b89f612

  • SSDEEP

    1536:rMszs5YjahRO/N69BH3OoGa+FL9jKceRgrkjSo:4G+YjahkFoN3Oo1+F92S

Score
10/10

Malware Config

Targets

    • Target

      909f52973d2ab55042122458f3b48400_NeikiAnalytics.exe

    • Size

      124KB

    • MD5

      909f52973d2ab55042122458f3b48400

    • SHA1

      4de8223d07234e73bd74372ef1da04c67c980032

    • SHA256

      03feb2b1220fef38462a53e46cce41740dc32853ad841f2be5d8481b3c35c431

    • SHA512

      854fa96c862ea607d10b09d91ff6ba6b90b248f2e5b2965087b76557e8b71f4bf5fa2989c7ace1ab5025244ef75c0a922ed8d54a84ec91fddb39cc7a8b89f612

    • SSDEEP

      1536:rMszs5YjahRO/N69BH3OoGa+FL9jKceRgrkjSo:4G+YjahkFoN3Oo1+F92S

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks