ae78c4cb8ff8e5ee9f4567fdf1a8b33cb75cdac7e4e1019aeffe18d544eb056c | Triage

Sharing

General

Target

1672279668211b916399ddf57f6597e0_NeikiAnalytics.exe
Size

29KB
Sample

240602-a6ngsade57
MD5

1672279668211b916399ddf57f6597e0
SHA1

a2c32bf4495c27e37f465a26ef3a176c79df4bc0
SHA256

ae78c4cb8ff8e5ee9f4567fdf1a8b33cb75cdac7e4e1019aeffe18d544eb056c
SHA512

cb47b71ee63b78e0825f0749e35f7aa055162454d409c5fa477384ec7103177af19fca500f76293234ebe2187cc96d31e303630510a0b05abe50dc16142a2d94
SSDEEP

384:eApc8m4e0GvQak4JI341C0abnk6hJIuq1Qdv:eApQr0GvdFJI34qTk6hJIuIA

Score

7^/10

Malware Config

Targets

- Target
  
  1672279668211b916399ddf57f6597e0_NeikiAnalytics.exe
- Size
  
  29KB
- MD5
  
  1672279668211b916399ddf57f6597e0
- SHA1
  
  a2c32bf4495c27e37f465a26ef3a176c79df4bc0
- SHA256
  
  ae78c4cb8ff8e5ee9f4567fdf1a8b33cb75cdac7e4e1019aeffe18d544eb056c
- SHA512
  
  cb47b71ee63b78e0825f0749e35f7aa055162454d409c5fa477384ec7103177af19fca500f76293234ebe2187cc96d31e303630510a0b05abe50dc16142a2d94
- SSDEEP
  
  384:eApc8m4e0GvQak4JI341C0abnk6hJIuq1Qdv:eApQr0GvdFJI34qTk6hJIuIA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2