General

  • Target

    8066cd0aa0376c5dc9d9af2487403c80_NeikiAnalytics.exe

  • Size

    232KB

  • Sample

    240613-qsv8gavelj

  • MD5

    8066cd0aa0376c5dc9d9af2487403c80

  • SHA1

    28b2be2bf1a42f8b4214bc164a0b70a7119fd9a6

  • SHA256

    235c3977461f8fa7c8c7d4d16c0168e584746caa4c7a4e0f9ab1c2f008566187

  • SHA512

    d01de942725ffbeccebdc46d3d15e96c679da71450f9916e7615b30047e9df24f59e9912e4646e69f9ec9b5210c721384f5721706996bb0084fa7a77c91b641c

  • SSDEEP

    3072:p1i/NU8bOMYcYYcmy51VRgiFCpCIXUWOLTsEsigcL3P6xxc1Vne1i/NU82OMYcYU:ri/NjO5xbg/CSUFLTwMjs6wi/N+O7

Score
8/10

Malware Config

Targets

    • Target

      8066cd0aa0376c5dc9d9af2487403c80_NeikiAnalytics.exe

    • Size

      232KB

    • MD5

      8066cd0aa0376c5dc9d9af2487403c80

    • SHA1

      28b2be2bf1a42f8b4214bc164a0b70a7119fd9a6

    • SHA256

      235c3977461f8fa7c8c7d4d16c0168e584746caa4c7a4e0f9ab1c2f008566187

    • SHA512

      d01de942725ffbeccebdc46d3d15e96c679da71450f9916e7615b30047e9df24f59e9912e4646e69f9ec9b5210c721384f5721706996bb0084fa7a77c91b641c

    • SSDEEP

      3072:p1i/NU8bOMYcYYcmy51VRgiFCpCIXUWOLTsEsigcL3P6xxc1Vne1i/NU82OMYcYU:ri/NjO5xbg/CSUFLTwMjs6wi/N+O7

    Score
    8/10
    • Modifies Installed Components in the registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks