00ecc643276102457e927bc1e5ff3aea992697b3d3e189476684cd5f3a4c6f85 | Triage

Sharing

General

Target

00ecc643276102457e927bc1e5ff3aea992697b3d3e189476684cd5f3a4c6f85_NeikiAnalytics.exe
Size

40KB
Sample

240620-skhnhstfjg
MD5

c7b2680f1976cf9dcb6fe6181991b400
SHA1

99c007b0658caecfe3e4b7ec12a20e507afb747b
SHA256

00ecc643276102457e927bc1e5ff3aea992697b3d3e189476684cd5f3a4c6f85
SHA512

6be5b92c6e73b1f5dee8d10fee0daa9bf232c6cd06b6ab322df7d0116dabdc0a6d9693e6d716ec89d4a37672ed8f3658e2a4ffb0e8edb6f32d2b87a7651974fd
SSDEEP

768:pdA4TOKjHXRrs9sINeZEtejlIkoLN127BFVn2p4lAnZ8tvCkA8SsBiaojlnXtZcc:nA4TljXRrs9sINeZEtejlIkoLN127BFA

Score

7^/10

Malware Config

Targets

- Target
  
  00ecc643276102457e927bc1e5ff3aea992697b3d3e189476684cd5f3a4c6f85_NeikiAnalytics.exe
- Size
  
  40KB
- MD5
  
  c7b2680f1976cf9dcb6fe6181991b400
- SHA1
  
  99c007b0658caecfe3e4b7ec12a20e507afb747b
- SHA256
  
  00ecc643276102457e927bc1e5ff3aea992697b3d3e189476684cd5f3a4c6f85
- SHA512
  
  6be5b92c6e73b1f5dee8d10fee0daa9bf232c6cd06b6ab322df7d0116dabdc0a6d9693e6d716ec89d4a37672ed8f3658e2a4ffb0e8edb6f32d2b87a7651974fd
- SSDEEP
  
  768:pdA4TOKjHXRrs9sINeZEtejlIkoLN127BFVn2p4lAnZ8tvCkA8SsBiaojlnXtZcc:nA4TljXRrs9sINeZEtejlIkoLN127BFA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2