f938bec20c50a5461775350c134ea2250e00c8a874e10634f2835ac7691617fd | Triage

Sharing

General

Target

44cb8567b9be0548228a107e0d70c4d0_NeikiAnalytics.exe
Size

13KB
Sample

240605-g63d9sgd7v
MD5

44cb8567b9be0548228a107e0d70c4d0
SHA1

1068c599de0f5c288333f13a55844f5721ea1d1e
SHA256

f938bec20c50a5461775350c134ea2250e00c8a874e10634f2835ac7691617fd
SHA512

987d761b45273b3a9583c4a4b3259c663244b6df76747c0cb9918e4891e4ef66d07cc20775056a61894ed680f04e22b767e6fd21e87be6712bf474800441762f
SSDEEP

192:lHFwFITsYHSYHhL3k5t4dLpxuG/rowBM0Uxf4Wlj:llwFITlhY5qdCQrowBMTf1lj

Score

7^/10

Malware Config

Targets

- Target
  
  44cb8567b9be0548228a107e0d70c4d0_NeikiAnalytics.exe
- Size
  
  13KB
- MD5
  
  44cb8567b9be0548228a107e0d70c4d0
- SHA1
  
  1068c599de0f5c288333f13a55844f5721ea1d1e
- SHA256
  
  f938bec20c50a5461775350c134ea2250e00c8a874e10634f2835ac7691617fd
- SHA512
  
  987d761b45273b3a9583c4a4b3259c663244b6df76747c0cb9918e4891e4ef66d07cc20775056a61894ed680f04e22b767e6fd21e87be6712bf474800441762f
- SSDEEP
  
  192:lHFwFITsYHSYHhL3k5t4dLpxuG/rowBM0Uxf4Wlj:llwFITlhY5qdCQrowBMTf1lj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2