48df2246ab2dcb5542e9c34d11d46b83273748dc6e7e7e8099ef4e4363896fcc | Triage

Sharing

General

Target

870b8a16f42a9f4d218587d4dfc32fb0_NeikiAnalytics.exe
Size

32KB
Sample

240613-zxz7nazepc
MD5

870b8a16f42a9f4d218587d4dfc32fb0
SHA1

d5437bbeac267f484e86a36cf8a7d5b86c6e7a85
SHA256

48df2246ab2dcb5542e9c34d11d46b83273748dc6e7e7e8099ef4e4363896fcc
SHA512

7c795225c65091a69fc04e77a566951132cd76142ad03b41122e7750324212542888c2317f57637a3459f7972d0abee174593eb7fe4c12c9a765a0cfe50b6023
SSDEEP

192:KlApk98m4e0/IDJh/5ZQcvoyne4t/PQ3Pw1C0SluWbiWBNEckcVhJriEYHfIc:MApc8m4e0GvQak4JI341C0abnk6hJPSZ

Score

7^/10

Malware Config

Targets

- Target
  
  870b8a16f42a9f4d218587d4dfc32fb0_NeikiAnalytics.exe
- Size
  
  32KB
- MD5
  
  870b8a16f42a9f4d218587d4dfc32fb0
- SHA1
  
  d5437bbeac267f484e86a36cf8a7d5b86c6e7a85
- SHA256
  
  48df2246ab2dcb5542e9c34d11d46b83273748dc6e7e7e8099ef4e4363896fcc
- SHA512
  
  7c795225c65091a69fc04e77a566951132cd76142ad03b41122e7750324212542888c2317f57637a3459f7972d0abee174593eb7fe4c12c9a765a0cfe50b6023
- SSDEEP
  
  192:KlApk98m4e0/IDJh/5ZQcvoyne4t/PQ3Pw1C0SluWbiWBNEckcVhJriEYHfIc:MApc8m4e0GvQak4JI341C0abnk6hJPSZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2