c20e7896381818d905e6fc2a7a4bae6d5d678ba1c4db81419af7ef288a4158c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b537c999435d5a0c5a01e1c99562f60_NeikiAnalytics.exe
Size

5.6MB
Sample

240608-ap3v5sfd62
MD5

7b537c999435d5a0c5a01e1c99562f60
SHA1

1dacb0321130283a44e8d113c66abcdc8ed9d5ac
SHA256

c20e7896381818d905e6fc2a7a4bae6d5d678ba1c4db81419af7ef288a4158c1
SHA512

be28ee6e04b07a9c59bda0d5816f4fc1e560fd08857260b8e09df17640827c2c587bfa267359e1eca342689a81d5b42ebb72c29ce35f3d6b16f72b256bc4be23
SSDEEP

98304:cT/EvpLZTiyM66vQkVDrP7CV6FxHfce6mBHcBScdAEf14j54sjZvdnRZ3VtGN5l:5GyMX7Cehce6mBH0r1uiqZFnRZ3b4

Score

7^/10

execution

Malware Config

Targets

- Target
  
  7b537c999435d5a0c5a01e1c99562f60_NeikiAnalytics.exe
- Size
  
  5.6MB
- MD5
  
  7b537c999435d5a0c5a01e1c99562f60
- SHA1
  
  1dacb0321130283a44e8d113c66abcdc8ed9d5ac
- SHA256
  
  c20e7896381818d905e6fc2a7a4bae6d5d678ba1c4db81419af7ef288a4158c1
- SHA512
  
  be28ee6e04b07a9c59bda0d5816f4fc1e560fd08857260b8e09df17640827c2c587bfa267359e1eca342689a81d5b42ebb72c29ce35f3d6b16f72b256bc4be23
- SSDEEP
  
  98304:cT/EvpLZTiyM66vQkVDrP7CV6FxHfce6mBHcBScdAEf14j54sjZvdnRZ3VtGN5l:5GyMX7Cehce6mBH0r1uiqZFnRZ3b4
Score

7^/10

execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2