23a6ebb747840d83ad29b3f96ed12dc9badad88bfb2fd9460e369a99435c8eae | Triage

Sharing

General

Target

0b77d81dfbccc866a413c21e2c758600_NeikiAnalytics.exe
Size

7.2MB
Sample

240616-z7jmnaydjg
MD5

0b77d81dfbccc866a413c21e2c758600
SHA1

fbabbef1d07a1f42a056712789b3b27dc226f698
SHA256

23a6ebb747840d83ad29b3f96ed12dc9badad88bfb2fd9460e369a99435c8eae
SHA512

231737647bf70faeaf7413154777df52ec0d52f0352e966899bb7915f84881ec08a03096f4698c594f588dc7053715b70b9944af996e0fa181ca1fac8ab7ec42
SSDEEP

98304:g9PJfB8vkcD+v49pN/hwQqZUha5jtSyZIUb:U8vkcDmIiQbaZtli

Score

7^/10

Malware Config

Targets

- Target
  
  0b77d81dfbccc866a413c21e2c758600_NeikiAnalytics.exe
- Size
  
  7.2MB
- MD5
  
  0b77d81dfbccc866a413c21e2c758600
- SHA1
  
  fbabbef1d07a1f42a056712789b3b27dc226f698
- SHA256
  
  23a6ebb747840d83ad29b3f96ed12dc9badad88bfb2fd9460e369a99435c8eae
- SHA512
  
  231737647bf70faeaf7413154777df52ec0d52f0352e966899bb7915f84881ec08a03096f4698c594f588dc7053715b70b9944af996e0fa181ca1fac8ab7ec42
- SSDEEP
  
  98304:g9PJfB8vkcD+v49pN/hwQqZUha5jtSyZIUb:U8vkcDmIiQbaZtli
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2