Overview

overview

8

Static

static

7

9030412ff7...cs.exe

windows7-x64

8

9030412ff7...cs.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9030412ff72a89d6bfe23ff45048a5f0_NeikiAnalytics.exe

  • Size

    143KB

  • Sample

    240601-gs9w7acc3s

  • MD5

    9030412ff72a89d6bfe23ff45048a5f0

  • SHA1

    e2fec71dd04779796f13282a7aa0077eb96948f9

  • SHA256

    34e6c6d49965dec46d96b4de85164563870f0fc33ff4e72936085efc22217d0d

  • SHA512

    502f9f22f30fd42a71358d971a6ca269186db6df4fa69b21c78ad5a8957b9b82ac2853663a7f08fa92513be991715831833a581e0c47c07a5c283d5579a2c55b

  • SSDEEP

    3072:F1i/NU8bOMYcYYcmy5cU+gTn6HOjDhWrzvvQwlgO5/1i/NU82OMYcYYamv5b:3i/NjO5YBgegD0PHzSwi/N+O7

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      9030412ff72a89d6bfe23ff45048a5f0_NeikiAnalytics.exe

    • Size

      143KB

    • MD5

      9030412ff72a89d6bfe23ff45048a5f0

    • SHA1

      e2fec71dd04779796f13282a7aa0077eb96948f9

    • SHA256

      34e6c6d49965dec46d96b4de85164563870f0fc33ff4e72936085efc22217d0d

    • SHA512

      502f9f22f30fd42a71358d971a6ca269186db6df4fa69b21c78ad5a8957b9b82ac2853663a7f08fa92513be991715831833a581e0c47c07a5c283d5579a2c55b

    • SSDEEP

      3072:F1i/NU8bOMYcYYcmy5cU+gTn6HOjDhWrzvvQwlgO5/1i/NU82OMYcYYamv5b:3i/NjO5YBgegD0PHzSwi/N+O7

    Score
    8/10
    persistenceupx

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks