4d664ea4f72bb24982de8def82644fce56a85dfd574eda657da7ba87184b7649 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e5c50bed422046643acb1812ddfd390_NeikiAnalytics.exe
Size

35KB
Sample

240617-bxqq8asdjl
MD5

2e5c50bed422046643acb1812ddfd390
SHA1

bc3ebd08761c8b6769a87808cbe49963bde95e6e
SHA256

4d664ea4f72bb24982de8def82644fce56a85dfd574eda657da7ba87184b7649
SHA512

c12cfedea6f33e3caec0971841d399936ecb64794f680b9107f3188e64a6d3a9af5c8baa2fdb088ed4f99ea9c0c7a734a462d5dff9f6b4f5028deb35aa93acc1
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5jmU4:bxNrC7kYo1Fxf2rYPL4

Score

7^/10

Malware Config

Targets

- Target
  
  2e5c50bed422046643acb1812ddfd390_NeikiAnalytics.exe
- Size
  
  35KB
- MD5
  
  2e5c50bed422046643acb1812ddfd390
- SHA1
  
  bc3ebd08761c8b6769a87808cbe49963bde95e6e
- SHA256
  
  4d664ea4f72bb24982de8def82644fce56a85dfd574eda657da7ba87184b7649
- SHA512
  
  c12cfedea6f33e3caec0971841d399936ecb64794f680b9107f3188e64a6d3a9af5c8baa2fdb088ed4f99ea9c0c7a734a462d5dff9f6b4f5028deb35aa93acc1
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5jmU4:bxNrC7kYo1Fxf2rYPL4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2