d5b8ff1e2ad6a280c4d0d3fbc90aa16115fa69cac2688f1e7260d1f2dfbb7392 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

53276cf69675538d958c1d9794692240_NeikiAnalytics.exe
Size

37KB
Sample

240613-bpr93syerf
MD5

53276cf69675538d958c1d9794692240
SHA1

69410b6674a4e1164eb58e09eaf813d1b4d9bacb
SHA256

d5b8ff1e2ad6a280c4d0d3fbc90aa16115fa69cac2688f1e7260d1f2dfbb7392
SHA512

8024b7d142455cccadc24b9768d48a9dab378d7f0ef8596410874155ce395ac1cc6868e458110050d3fe53618d1ad42b1616efdda1499390a33274c721635c5c
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qvoLUZ61VEeJ:btB9g/WItCSsAGjX7r3BTmUQ1VEM

Score

7^/10

Malware Config

Targets

- Target
  
  53276cf69675538d958c1d9794692240_NeikiAnalytics.exe
- Size
  
  37KB
- MD5
  
  53276cf69675538d958c1d9794692240
- SHA1
  
  69410b6674a4e1164eb58e09eaf813d1b4d9bacb
- SHA256
  
  d5b8ff1e2ad6a280c4d0d3fbc90aa16115fa69cac2688f1e7260d1f2dfbb7392
- SHA512
  
  8024b7d142455cccadc24b9768d48a9dab378d7f0ef8596410874155ce395ac1cc6868e458110050d3fe53618d1ad42b1616efdda1499390a33274c721635c5c
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qvoLUZ61VEeJ:btB9g/WItCSsAGjX7r3BTmUQ1VEM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2