Overview

overview

7

Static

static

3

a495330e15...cs.exe

windows7-x64

7

a495330e15...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a495330e156d736c6684d5dc97166880_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240607-rgk4sshd6t

  • MD5

    a495330e156d736c6684d5dc97166880

  • SHA1

    f28df3c1532e6e473317336d1f382409646e14b7

  • SHA256

    7e09f3a3afb083991a5a3c5cbc9a85d8f2a6f08ff555c55d391c16194a4a3948

  • SHA512

    73b38467eef0063111e4ad608f9f939988675c364afeca0176ec492d69f658077d5da421e8eb4aaf93e1503e064fc103723c2c520d2956300ca366ae0e4aab2b

  • SSDEEP

    384:BL7li/2zDq2DcEQvdhcJKLTp/NK9xabo:h/M/Q9cbo

Score
7/10

Malware Config

Targets

    • Target

      a495330e156d736c6684d5dc97166880_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      a495330e156d736c6684d5dc97166880

    • SHA1

      f28df3c1532e6e473317336d1f382409646e14b7

    • SHA256

      7e09f3a3afb083991a5a3c5cbc9a85d8f2a6f08ff555c55d391c16194a4a3948

    • SHA512

      73b38467eef0063111e4ad608f9f939988675c364afeca0176ec492d69f658077d5da421e8eb4aaf93e1503e064fc103723c2c520d2956300ca366ae0e4aab2b

    • SSDEEP

      384:BL7li/2zDq2DcEQvdhcJKLTp/NK9xabo:h/M/Q9cbo

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks