a54cb8ad2c79b23a6155ab200b5a48e024bd66019f89229ea8b8a3c13efe75b8 | Triage

Sharing

General

Target

132759bccbe8ce3489eb4253b77b3950_NeikiAnalytics.exe
Size

12KB
Sample

240602-ap5dzacg66
MD5

132759bccbe8ce3489eb4253b77b3950
SHA1

cc747cf1e8b64dd0d138083d0e59b01f41447432
SHA256

a54cb8ad2c79b23a6155ab200b5a48e024bd66019f89229ea8b8a3c13efe75b8
SHA512

b26870f285260f172cfbae16f79befd4c0b9e03697e0e8ec3ffa502ccd79b30ee3fdee5af62e8bfd08f0e2ed721cc6f35bfbd2fc927fba198952bcd559731826
SSDEEP

384:yL7li/2zAq2DcEQvdQcJKLTp/NK9xa71:s8MCQ9c71

Score

7^/10

Malware Config

Targets

- Target
  
  132759bccbe8ce3489eb4253b77b3950_NeikiAnalytics.exe
- Size
  
  12KB
- MD5
  
  132759bccbe8ce3489eb4253b77b3950
- SHA1
  
  cc747cf1e8b64dd0d138083d0e59b01f41447432
- SHA256
  
  a54cb8ad2c79b23a6155ab200b5a48e024bd66019f89229ea8b8a3c13efe75b8
- SHA512
  
  b26870f285260f172cfbae16f79befd4c0b9e03697e0e8ec3ffa502ccd79b30ee3fdee5af62e8bfd08f0e2ed721cc6f35bfbd2fc927fba198952bcd559731826
- SSDEEP
  
  384:yL7li/2zAq2DcEQvdQcJKLTp/NK9xa71:s8MCQ9c71
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2