a6f872f578101c9496778ed14e55b008058b14307219cbf49718c8b7f324bdfc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ad1b1a6266f5b01c21c403144350790_NeikiAnalytics.exe
Size

344KB
Sample

240611-g59rysxdpb
MD5

2ad1b1a6266f5b01c21c403144350790
SHA1

1f36b97e2e85dcc3a84c8f97f8b61240d0c4cbee
SHA256

a6f872f578101c9496778ed14e55b008058b14307219cbf49718c8b7f324bdfc
SHA512

06f220cea34f95a18d35c1f6b16939d0ebdafccf3431b15b1b4d65c823ae40ff451fafc276af59d55489d4aed4989027a179cd8f454a86480eb19a45b58763a1
SSDEEP

6144:sTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:sTBPFV0RyWl3h2E+7pYm0

Score

7^/10

Malware Config

Targets

- Target
  
  2ad1b1a6266f5b01c21c403144350790_NeikiAnalytics.exe
- Size
  
  344KB
- MD5
  
  2ad1b1a6266f5b01c21c403144350790
- SHA1
  
  1f36b97e2e85dcc3a84c8f97f8b61240d0c4cbee
- SHA256
  
  a6f872f578101c9496778ed14e55b008058b14307219cbf49718c8b7f324bdfc
- SHA512
  
  06f220cea34f95a18d35c1f6b16939d0ebdafccf3431b15b1b4d65c823ae40ff451fafc276af59d55489d4aed4989027a179cd8f454a86480eb19a45b58763a1
- SSDEEP
  
  6144:sTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:sTBPFV0RyWl3h2E+7pYm0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2