Overview

overview

8

Static

static

3

6994648df6...cs.exe

windows7-x64

8

6994648df6...cs.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    6994648df6346aa181d7407b80412ba60793a447a6321b7aae50f6177957d16d_NeikiAnalytics.exe

  • Size

    73KB

  • Sample

    240620-q1k3gazhqe

  • MD5

    37c3a2e58b80c4e06f4be14971e51900

  • SHA1

    3cb7792677dfefae7bdb934eeab6cb0c4c2fb4fc

  • SHA256

    6994648df6346aa181d7407b80412ba60793a447a6321b7aae50f6177957d16d

  • SHA512

    8b606555e4e370645bec2c97a51d27d6711e4fdf75bab5fd11ff5ae51accbe79873c6715f673087fedd729d140e63994cab2f3fc96be614a7ef997fcb5d5860c

  • SSDEEP

    1536:Zr3Z5IfQmv81x7pP1r3yXPdtnyjS++++P:lJOfQm01/9r3yXPd1yj6

Score
8/10
evasion

Malware Config

Targets

    • Target

      6994648df6346aa181d7407b80412ba60793a447a6321b7aae50f6177957d16d_NeikiAnalytics.exe

    • Size

      73KB

    • MD5

      37c3a2e58b80c4e06f4be14971e51900

    • SHA1

      3cb7792677dfefae7bdb934eeab6cb0c4c2fb4fc

    • SHA256

      6994648df6346aa181d7407b80412ba60793a447a6321b7aae50f6177957d16d

    • SHA512

      8b606555e4e370645bec2c97a51d27d6711e4fdf75bab5fd11ff5ae51accbe79873c6715f673087fedd729d140e63994cab2f3fc96be614a7ef997fcb5d5860c

    • SSDEEP

      1536:Zr3Z5IfQmv81x7pP1r3yXPdtnyjS++++P:lJOfQm01/9r3yXPd1yj6

    Score
    8/10
    evasion

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks