94df15b184d00f8993f71bb034c6b4561664e056b8bb6faf0278236e41d70a2b | Triage

Sharing

General

Target

079b753b91dc2ba5f2378358e5c8e750_NeikiAnalytics.exe
Size

2.7MB
Sample

240606-mgy87sch61
MD5

079b753b91dc2ba5f2378358e5c8e750
SHA1

de8b1c44ac392825dca303dbbd4d3b962b7921b8
SHA256

94df15b184d00f8993f71bb034c6b4561664e056b8bb6faf0278236e41d70a2b
SHA512

68b762ccb10cf20fab5c268bb3085b229dfb3803ac0c8a4f468e4d0f6de36137fa52e0601af8689cdb72825ca88705f31ee9114286e9d63011541ef915acc48c
SSDEEP

49152:ppUlRhko4VNa0sIWYo3bLeXcgC0DMckkRR8r3FmW21f8/K+VctU4uJL:ppUlIa0vo3UcgCgVR8r3FR2d8iMcIJL

Score

7^/10

Malware Config

Targets

- Target
  
  079b753b91dc2ba5f2378358e5c8e750_NeikiAnalytics.exe
- Size
  
  2.7MB
- MD5
  
  079b753b91dc2ba5f2378358e5c8e750
- SHA1
  
  de8b1c44ac392825dca303dbbd4d3b962b7921b8
- SHA256
  
  94df15b184d00f8993f71bb034c6b4561664e056b8bb6faf0278236e41d70a2b
- SHA512
  
  68b762ccb10cf20fab5c268bb3085b229dfb3803ac0c8a4f468e4d0f6de36137fa52e0601af8689cdb72825ca88705f31ee9114286e9d63011541ef915acc48c
- SSDEEP
  
  49152:ppUlRhko4VNa0sIWYo3bLeXcgC0DMckkRR8r3FmW21f8/K+VctU4uJL:ppUlIa0vo3UcgCgVR8r3FR2d8iMcIJL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2