5be48a605a13a04e21001a9b43a4b01dd98310be9c46e922f30d62a1126efe3d | Triage

Sharing

General

Target

5be48a605a13a04e21001a9b43a4b01dd98310be9c46e922f30d62a1126efe3d_NeikiAnalytics.exe
Size

26KB
Sample

240620-ne474svbmd
MD5

4397951ed826dab94a67b86369577740
SHA1

76c532742b648bf9050d0e4a6860f3b82fe23364
SHA256

5be48a605a13a04e21001a9b43a4b01dd98310be9c46e922f30d62a1126efe3d
SHA512

09503f9be190006ba9ca12392fc90620c567f69a7941febdcfae4934fa84b0f4d5735d96957deb851cf819b69c2a3ddf71b772dfc3f126ae4d3f4f333d26bf0c
SSDEEP

768:6B7HBXFw82t2C80lyaZ4jX05Rfw/+1j02:u7HZFwzlyaZTQSjT

Score

7^/10

Malware Config

Targets

- Target
  
  5be48a605a13a04e21001a9b43a4b01dd98310be9c46e922f30d62a1126efe3d_NeikiAnalytics.exe
- Size
  
  26KB
- MD5
  
  4397951ed826dab94a67b86369577740
- SHA1
  
  76c532742b648bf9050d0e4a6860f3b82fe23364
- SHA256
  
  5be48a605a13a04e21001a9b43a4b01dd98310be9c46e922f30d62a1126efe3d
- SHA512
  
  09503f9be190006ba9ca12392fc90620c567f69a7941febdcfae4934fa84b0f4d5735d96957deb851cf819b69c2a3ddf71b772dfc3f126ae4d3f4f333d26bf0c
- SSDEEP
  
  768:6B7HBXFw82t2C80lyaZ4jX05Rfw/+1j02:u7HZFwzlyaZTQSjT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2