General

  • Target

    a13af838107bb2aec554352837f7e120_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240603-w4j78sef5x

  • MD5

    a13af838107bb2aec554352837f7e120

  • SHA1

    b02245476f8c46545fc6318a00264778ca5f89cb

  • SHA256

    f7428f91abbaf1ccf43650e081288ae3b71f4bca6a6ba0245916893c4859b254

  • SHA512

    3d7d6ca0ebd7e2de259d3aed0f42d65019921986eac09d30fb9f42e9372ec62a590941e69a09b38852d347b15c4c9b481600b06c47ebb84966f6b62d8160f31a

  • SSDEEP

    384:6L7li/2z3q2DcEQvdQcJKLTp/NK9xaxi:kTMCQ9cxi

Score
7/10

Malware Config

Targets

    • Target

      a13af838107bb2aec554352837f7e120_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      a13af838107bb2aec554352837f7e120

    • SHA1

      b02245476f8c46545fc6318a00264778ca5f89cb

    • SHA256

      f7428f91abbaf1ccf43650e081288ae3b71f4bca6a6ba0245916893c4859b254

    • SHA512

      3d7d6ca0ebd7e2de259d3aed0f42d65019921986eac09d30fb9f42e9372ec62a590941e69a09b38852d347b15c4c9b481600b06c47ebb84966f6b62d8160f31a

    • SSDEEP

      384:6L7li/2z3q2DcEQvdQcJKLTp/NK9xaxi:kTMCQ9cxi

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks