bf6f9e79e17deeac71fba93387fb590bccc5a366a9b60e9842fbd9b595036dc0 | Triage

Sharing

General

Target

a6d9f37454fc74404756edb8041cdbf0_NeikiAnalytics.exe
Size

224KB
Sample

240603-yzspxshe46
MD5

a6d9f37454fc74404756edb8041cdbf0
SHA1

a1cb0a434bc9adc5e366140f2c6992538651228d
SHA256

bf6f9e79e17deeac71fba93387fb590bccc5a366a9b60e9842fbd9b595036dc0
SHA512

101d71bc374b3263fa694f32aa83e380d0fea2a572f9eb7259623ffba8d23e9acc95baf9706b82c91617036fafbdc20659bf25556c00e03bc6615df6e55d6f79
SSDEEP

3072:G2DK065RfGhhCjG8G3GbGVGBGfGuGxGWYcrf6KadE:G2e065YhAYcD6Kad

Score

7^/10

Malware Config

Targets

- Target
  
  a6d9f37454fc74404756edb8041cdbf0_NeikiAnalytics.exe
- Size
  
  224KB
- MD5
  
  a6d9f37454fc74404756edb8041cdbf0
- SHA1
  
  a1cb0a434bc9adc5e366140f2c6992538651228d
- SHA256
  
  bf6f9e79e17deeac71fba93387fb590bccc5a366a9b60e9842fbd9b595036dc0
- SHA512
  
  101d71bc374b3263fa694f32aa83e380d0fea2a572f9eb7259623ffba8d23e9acc95baf9706b82c91617036fafbdc20659bf25556c00e03bc6615df6e55d6f79
- SSDEEP
  
  3072:G2DK065RfGhhCjG8G3GbGVGBGfGuGxGWYcrf6KadE:G2e065YhAYcD6Kad
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2