General

  • Target

    15f5f8505c5366fe5f4054e59f6e7700_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240609-h8pfvsfe5t

  • MD5

    15f5f8505c5366fe5f4054e59f6e7700

  • SHA1

    7c5378381072df74132b2d39d278bb8b6e5f4604

  • SHA256

    b52e8270881e64ad873a99b06bd115000f4000ff3951ed4198570af78304c021

  • SHA512

    dbbcf24f9a411bea6e3bf34c16fa9f2d0928f4cd9ece32c26aba834c45537cb175541dbb27c27c4f1d703c8c4872772898a258c6d400df62e8648395eb993dba

  • SSDEEP

    384:RL7li/2zAq2DcEQvdhcJKLTp/NK9xawk:RMM/Q9cwk

Score
7/10

Malware Config

Targets

    • Target

      15f5f8505c5366fe5f4054e59f6e7700_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      15f5f8505c5366fe5f4054e59f6e7700

    • SHA1

      7c5378381072df74132b2d39d278bb8b6e5f4604

    • SHA256

      b52e8270881e64ad873a99b06bd115000f4000ff3951ed4198570af78304c021

    • SHA512

      dbbcf24f9a411bea6e3bf34c16fa9f2d0928f4cd9ece32c26aba834c45537cb175541dbb27c27c4f1d703c8c4872772898a258c6d400df62e8648395eb993dba

    • SSDEEP

      384:RL7li/2zAq2DcEQvdhcJKLTp/NK9xawk:RMM/Q9cwk

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks