General

  • Target

    1936be3a29974ac738641833864426d0_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240602-bg3qvaea96

  • MD5

    1936be3a29974ac738641833864426d0

  • SHA1

    338d1de7c1cb467e5889d68aeecfcf45160b17c5

  • SHA256

    8159708262d112af6982a9bf9f0330bd1f97b9230f6e3ae7fd0c50a964a206be

  • SHA512

    d51f7a54f297512dd44033b833f01052844293b10b4243071cb038dfb050317d1e0ac82825cf6bc26d509b9c5f6d3e98936a589557eca7e368c6f1e755203b37

  • SSDEEP

    384:cL7li/2zXq2DcEQvdhcJKLTp/NK9xa/Y:6TM/Q9c/Y

Score
7/10

Malware Config

Targets

    • Target

      1936be3a29974ac738641833864426d0_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      1936be3a29974ac738641833864426d0

    • SHA1

      338d1de7c1cb467e5889d68aeecfcf45160b17c5

    • SHA256

      8159708262d112af6982a9bf9f0330bd1f97b9230f6e3ae7fd0c50a964a206be

    • SHA512

      d51f7a54f297512dd44033b833f01052844293b10b4243071cb038dfb050317d1e0ac82825cf6bc26d509b9c5f6d3e98936a589557eca7e368c6f1e755203b37

    • SSDEEP

      384:cL7li/2zXq2DcEQvdhcJKLTp/NK9xa/Y:6TM/Q9c/Y

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks