ba898f05f347722f00737f2e70d80daa934c102142154ff2a7208a5ae2f4000f | Triage

Sharing

General

Target

8a4010ab205b0d866e3569278dec80d0_NeikiAnalytics.exe
Size

95KB
Sample

240613-1wed8swajn
MD5

8a4010ab205b0d866e3569278dec80d0
SHA1

34feead405b1fd554fa826fd712bb1addc10c4e9
SHA256

ba898f05f347722f00737f2e70d80daa934c102142154ff2a7208a5ae2f4000f
SHA512

1b34ccf7377f778529d87ed57fb9b1be851d912a11e61f0c44f632781598eaff68fe61cacea2fa81a5baf808b7a356e0e81bf74b1441dc941ecf3c0767122e87
SSDEEP

1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU65:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/AO

Score

7^/10

Malware Config

Targets

- Target
  
  8a4010ab205b0d866e3569278dec80d0_NeikiAnalytics.exe
- Size
  
  95KB
- MD5
  
  8a4010ab205b0d866e3569278dec80d0
- SHA1
  
  34feead405b1fd554fa826fd712bb1addc10c4e9
- SHA256
  
  ba898f05f347722f00737f2e70d80daa934c102142154ff2a7208a5ae2f4000f
- SHA512
  
  1b34ccf7377f778529d87ed57fb9b1be851d912a11e61f0c44f632781598eaff68fe61cacea2fa81a5baf808b7a356e0e81bf74b1441dc941ecf3c0767122e87
- SSDEEP
  
  1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU65:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/AO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2