d8a3567acc3d42d1752702fbd8d2b2fea8ceb3b7e7307bcdfb6d39780aa2be1d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16c83964627ce8be34cf24dc0e3fe9c0_NeikiAnalytics.exe
Size

28KB
Sample

240602-a7xf3sde97
MD5

16c83964627ce8be34cf24dc0e3fe9c0
SHA1

4f6c4f7e724681bc5b2b6e5b4f8c1116ef9c58d1
SHA256

d8a3567acc3d42d1752702fbd8d2b2fea8ceb3b7e7307bcdfb6d39780aa2be1d
SHA512

285bb7bc5f1890f87732501e2f6821b54a379ce20d40a25ffef621e57f14df55f01e19f77115ad18321ecaf6bafbf7d77ef08da2de1f836f171bbe65c2be07bf
SSDEEP

384:dUJ8s1g8ssAi6D9VIt13vfdHldhwLGEGi+OGa0MMwm:SasbLAiict13vfdHldhwyEr+OGa0MS

Score

7^/10

Malware Config

Targets

- Target
  
  16c83964627ce8be34cf24dc0e3fe9c0_NeikiAnalytics.exe
- Size
  
  28KB
- MD5
  
  16c83964627ce8be34cf24dc0e3fe9c0
- SHA1
  
  4f6c4f7e724681bc5b2b6e5b4f8c1116ef9c58d1
- SHA256
  
  d8a3567acc3d42d1752702fbd8d2b2fea8ceb3b7e7307bcdfb6d39780aa2be1d
- SHA512
  
  285bb7bc5f1890f87732501e2f6821b54a379ce20d40a25ffef621e57f14df55f01e19f77115ad18321ecaf6bafbf7d77ef08da2de1f836f171bbe65c2be07bf
- SSDEEP
  
  384:dUJ8s1g8ssAi6D9VIt13vfdHldhwLGEGi+OGa0MMwm:SasbLAiict13vfdHldhwyEr+OGa0MS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2