744630cfab89bb63fa396ef29c7d70789b575636f64b42fa8b06648ff49e9ecc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88ab84519cf8417508ded495e44fa7c0_NeikiAnalytics.exe
Size

80KB
Sample

240603-ael5msdc89
MD5

88ab84519cf8417508ded495e44fa7c0
SHA1

268b80660591ba61ff9abb48c288a0cc13ed7536
SHA256

744630cfab89bb63fa396ef29c7d70789b575636f64b42fa8b06648ff49e9ecc
SHA512

98be3e079abc26e2330a51c312fa0b758e29deed99d0f581c4d6885400d7360eca95f3df07eacc1a4bb78a5e9023a71c5f91e5751db09941c531c01dc44cf6da
SSDEEP

1536:bDcWLfIbgEp10gyX/dtnTHNWnnn6222223:bDXL0n0gyX/d1re22223

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  88ab84519cf8417508ded495e44fa7c0_NeikiAnalytics.exe
- Size
  
  80KB
- MD5
  
  88ab84519cf8417508ded495e44fa7c0
- SHA1
  
  268b80660591ba61ff9abb48c288a0cc13ed7536
- SHA256
  
  744630cfab89bb63fa396ef29c7d70789b575636f64b42fa8b06648ff49e9ecc
- SHA512
  
  98be3e079abc26e2330a51c312fa0b758e29deed99d0f581c4d6885400d7360eca95f3df07eacc1a4bb78a5e9023a71c5f91e5751db09941c531c01dc44cf6da
- SSDEEP
  
  1536:bDcWLfIbgEp10gyX/dtnTHNWnnn6222223:bDXL0n0gyX/d1re22223
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2