8f3aa9fffa1c5bf95985363b7d7ac43d6833886c765c31a1980462b01ea332ce | Triage

Sharing

General

Target

10f2a22d4a71a472382bf4e7bbef6150_NeikiAnalytics.exe
Size

12KB
Sample

240603-3e253sch61
MD5

10f2a22d4a71a472382bf4e7bbef6150
SHA1

3558289bc9522485515301838869c808d35c1133
SHA256

8f3aa9fffa1c5bf95985363b7d7ac43d6833886c765c31a1980462b01ea332ce
SHA512

cd139cb79977c1f487d726e4586ecf924ffd5642bac7cce512248b54107ba3360e94ea0f3d8d361bcae1990b130580bbfa09709c45a04b4b3ed9874022fe0648
SSDEEP

384:sL7li/2zOq2DcEQvdQcJKLTp/NK9xano:qWMCQ9cno

Score

7^/10

Malware Config

Targets

- Target
  
  10f2a22d4a71a472382bf4e7bbef6150_NeikiAnalytics.exe
- Size
  
  12KB
- MD5
  
  10f2a22d4a71a472382bf4e7bbef6150
- SHA1
  
  3558289bc9522485515301838869c808d35c1133
- SHA256
  
  8f3aa9fffa1c5bf95985363b7d7ac43d6833886c765c31a1980462b01ea332ce
- SHA512
  
  cd139cb79977c1f487d726e4586ecf924ffd5642bac7cce512248b54107ba3360e94ea0f3d8d361bcae1990b130580bbfa09709c45a04b4b3ed9874022fe0648
- SSDEEP
  
  384:sL7li/2zOq2DcEQvdQcJKLTp/NK9xano:qWMCQ9cno
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2