7407eb7110b758ce7df74d1c080e8aa5819dcf932c16f8c286c79e95b60806e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7efa6249056782b1337c116e99df2f10_NeikiAnalytics.exe
Size

66KB
Sample

240613-qgsyzazfqh
MD5

7efa6249056782b1337c116e99df2f10
SHA1

66e3d4a96c56f39dfec54e8973ad4a8c366ed899
SHA256

7407eb7110b758ce7df74d1c080e8aa5819dcf932c16f8c286c79e95b60806e8
SHA512

33570099d7920cad79b2cb6afc779ccee3f9a6da7754be2dd0f2fe58ce98fbef690814fe65337045299fe990c9298525b63b28a4744658cc72351b5b061d5e50
SSDEEP

768:urItKyw5WHXfQmjIiIk9ecAaHSHMb96FyXRDLdXDffff3O:ur3Z5IfQmv81ayo2yXpZXi

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  7efa6249056782b1337c116e99df2f10_NeikiAnalytics.exe
- Size
  
  66KB
- MD5
  
  7efa6249056782b1337c116e99df2f10
- SHA1
  
  66e3d4a96c56f39dfec54e8973ad4a8c366ed899
- SHA256
  
  7407eb7110b758ce7df74d1c080e8aa5819dcf932c16f8c286c79e95b60806e8
- SHA512
  
  33570099d7920cad79b2cb6afc779ccee3f9a6da7754be2dd0f2fe58ce98fbef690814fe65337045299fe990c9298525b63b28a4744658cc72351b5b061d5e50
- SSDEEP
  
  768:urItKyw5WHXfQmjIiIk9ecAaHSHMb96FyXRDLdXDffff3O:ur3Z5IfQmv81ayo2yXpZXi
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2