General

  • Target

    1ca0b0e04fabbbff72dedd49f87e8500_NeikiAnalytics.exe

  • Size

    12KB

  • Sample

    240612-eht2wazgqb

  • MD5

    1ca0b0e04fabbbff72dedd49f87e8500

  • SHA1

    80fd706755bc6609c56d9edcb8b51602e7123594

  • SHA256

    8c0abc3f28f6614999f4ce3c78c8f2cdf637a6eef4877e123ebf27fcbce5ebe9

  • SHA512

    f2273e659e6ea7bc549034c6bd833c3c905a62f5253fa4a1e0b88e9dfe766f9be97adeddbfe1fab4aa900992dedb0ce3a9902c49103c960446e950c11232c6d5

  • SSDEEP

    384:cL7li/2zvq2DcEQvdQcJKLTp/NK9xaQ/:6bMCQ9cQ/

Score
7/10

Malware Config

Targets

    • Target

      1ca0b0e04fabbbff72dedd49f87e8500_NeikiAnalytics.exe

    • Size

      12KB

    • MD5

      1ca0b0e04fabbbff72dedd49f87e8500

    • SHA1

      80fd706755bc6609c56d9edcb8b51602e7123594

    • SHA256

      8c0abc3f28f6614999f4ce3c78c8f2cdf637a6eef4877e123ebf27fcbce5ebe9

    • SHA512

      f2273e659e6ea7bc549034c6bd833c3c905a62f5253fa4a1e0b88e9dfe766f9be97adeddbfe1fab4aa900992dedb0ce3a9902c49103c960446e950c11232c6d5

    • SSDEEP

      384:cL7li/2zvq2DcEQvdQcJKLTp/NK9xaQ/:6bMCQ9cQ/

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks