448cde8603bc989676e1f30f2fc0c13a93ff437bb7ff438712df7d3426eaabfa | Triage

Sharing

General

Target

1631bf0f060eff672a364649e5f26060_NeikiAnalytics.exe
Size

45KB
Sample

240602-a5ehgsch3v
MD5

1631bf0f060eff672a364649e5f26060
SHA1

b1ab49664143b22ddfad82eb6afc2409cf2c4a0f
SHA256

448cde8603bc989676e1f30f2fc0c13a93ff437bb7ff438712df7d3426eaabfa
SHA512

b681dbf7546778679c781df1b94b1d8c1214814b5c47f422d89901b702695e4ba37da2ff0f8d159a75522c7e92e750dafac53022ce56183a800b435885a69f18
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPhv:P6QFElP6k+MRQMOtEvwDpjBQpVXKv

Score

7^/10

Malware Config

Targets

- Target
  
  1631bf0f060eff672a364649e5f26060_NeikiAnalytics.exe
- Size
  
  45KB
- MD5
  
  1631bf0f060eff672a364649e5f26060
- SHA1
  
  b1ab49664143b22ddfad82eb6afc2409cf2c4a0f
- SHA256
  
  448cde8603bc989676e1f30f2fc0c13a93ff437bb7ff438712df7d3426eaabfa
- SHA512
  
  b681dbf7546778679c781df1b94b1d8c1214814b5c47f422d89901b702695e4ba37da2ff0f8d159a75522c7e92e750dafac53022ce56183a800b435885a69f18
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPhv:P6QFElP6k+MRQMOtEvwDpjBQpVXKv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2