Overview

overview

8

Static

static

3

392a66e81e...cs.exe

windows7-x64

8

392a66e81e...cs.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    392a66e81edeff02bcab7b390508db40_NeikiAnalytics.exe

  • Size

    73KB

  • Sample

    240617-c75hssvdrm

  • MD5

    392a66e81edeff02bcab7b390508db40

  • SHA1

    7e014d0eb84355db8ecc4cad4371574039f0bef0

  • SHA256

    e51ea3c723a413b00ef40f295b59fe60bdefb60d3333d69f70d188a8f0a8b0bf

  • SHA512

    a73df460134e74dbd92f7bbcb8bf57f99aabd07dd797a1381f8c978a65c649bbe7a6190ca4683bafc8e0006e933d79a7b8fac61fd456fc08532d7e8052d63185

  • SSDEEP

    768:ZrItKyw5WHXfQmjIiIk9ecAx7pP1EPU96MyXPdtldE9bIIIwjkQ:Zr3Z5IfQmv81x7pP1r3yXPdtnyjN

Score
8/10
evasion

Malware Config

Targets

    • Target

      392a66e81edeff02bcab7b390508db40_NeikiAnalytics.exe

    • Size

      73KB

    • MD5

      392a66e81edeff02bcab7b390508db40

    • SHA1

      7e014d0eb84355db8ecc4cad4371574039f0bef0

    • SHA256

      e51ea3c723a413b00ef40f295b59fe60bdefb60d3333d69f70d188a8f0a8b0bf

    • SHA512

      a73df460134e74dbd92f7bbcb8bf57f99aabd07dd797a1381f8c978a65c649bbe7a6190ca4683bafc8e0006e933d79a7b8fac61fd456fc08532d7e8052d63185

    • SSDEEP

      768:ZrItKyw5WHXfQmjIiIk9ecAx7pP1EPU96MyXPdtldE9bIIIwjkQ:Zr3Z5IfQmv81x7pP1r3yXPdtnyjN

    Score
    8/10
    evasion

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks