General

  • Target

    9b74696b14e5fd7ad2434495df1778e0_NeikiAnalytics.exe

  • Size

    164KB

  • Sample

    240603-e2nzzacf22

  • MD5

    9b74696b14e5fd7ad2434495df1778e0

  • SHA1

    150aecda3c8a0a2673d33a5d0df863762adc3387

  • SHA256

    132c44fa7f6ceacd1c38469c2d99c2999e1f1afad42fa0f54a72b278db0d6954

  • SHA512

    e59fedba1322b235cb65cd0a73b5b54caf0b03e29cd665b4b62442d189eb226966a6d745c1ce5dfb2b989ab90563c734d6a68c3ab3ed50eac310246638b2723d

  • SSDEEP

    3072:hsWcISl+s6veiCi36JRbs4jwKWuRr6TQY3RBTzFJ0T72TS:hsWcIM+s6mJDjwZuesY3fTzFJ0T72W

Score
10/10

Malware Config

Targets

    • Target

      9b74696b14e5fd7ad2434495df1778e0_NeikiAnalytics.exe

    • Size

      164KB

    • MD5

      9b74696b14e5fd7ad2434495df1778e0

    • SHA1

      150aecda3c8a0a2673d33a5d0df863762adc3387

    • SHA256

      132c44fa7f6ceacd1c38469c2d99c2999e1f1afad42fa0f54a72b278db0d6954

    • SHA512

      e59fedba1322b235cb65cd0a73b5b54caf0b03e29cd665b4b62442d189eb226966a6d745c1ce5dfb2b989ab90563c734d6a68c3ab3ed50eac310246638b2723d

    • SSDEEP

      3072:hsWcISl+s6veiCi36JRbs4jwKWuRr6TQY3RBTzFJ0T72TS:hsWcIM+s6mJDjwZuesY3fTzFJ0T72W

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks