7fb2700ef5fcd0056f571b969e233c0ccb787b3fa7b328d7eeccdc418ecf2477 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

388ae63dfaab745eab37df4c76f1a590_NeikiAnalytics.exe
Size

12KB
Sample

240604-hbhl2sgg56
MD5

388ae63dfaab745eab37df4c76f1a590
SHA1

b9f777f860f641bbcd156982b080c681331996f4
SHA256

7fb2700ef5fcd0056f571b969e233c0ccb787b3fa7b328d7eeccdc418ecf2477
SHA512

f6fc663f8def8715a2dd04163231ee933e687c390025ceecb00e1d9587c02ae1cfe64275ef868b485021acca5ad4c5b8925674e35c8bb04ef7c5edd03726fc8b
SSDEEP

384:pL7li/2zFq2DcEQvdQcJKLTp/NK9xa//:Z1MCQ9c//

Score

7^/10

Malware Config

Targets

- Target
  
  388ae63dfaab745eab37df4c76f1a590_NeikiAnalytics.exe
- Size
  
  12KB
- MD5
  
  388ae63dfaab745eab37df4c76f1a590
- SHA1
  
  b9f777f860f641bbcd156982b080c681331996f4
- SHA256
  
  7fb2700ef5fcd0056f571b969e233c0ccb787b3fa7b328d7eeccdc418ecf2477
- SHA512
  
  f6fc663f8def8715a2dd04163231ee933e687c390025ceecb00e1d9587c02ae1cfe64275ef868b485021acca5ad4c5b8925674e35c8bb04ef7c5edd03726fc8b
- SSDEEP
  
  384:pL7li/2zFq2DcEQvdQcJKLTp/NK9xa//:Z1MCQ9c//
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2