2630fdea6a4b8053ce61b15916ba3ba07b52bddf902cd75257067ac9fa561dc9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2630fdea6a4b8053ce61b15916ba3ba07b52bddf902cd75257067ac9fa561dc9_NeikiAnalytics.exe
Size

44KB
Sample

240624-a6bszs1emg
MD5

9bbaba75dc13444a0f76133199090b00
SHA1

e6d4f7d95deac5468f41439caf92bdbf46f6a84c
SHA256

2630fdea6a4b8053ce61b15916ba3ba07b52bddf902cd75257067ac9fa561dc9
SHA512

a1229e7dcfe50c43f53889fc0f95afc5d104a3612ea1e1009834632c5e5657da98fc7cc7f628505b4116a1778a6ddb1eb9f55c41a78d3e7855b6863578b370b2
SSDEEP

768:Q1eRH+9lFh0ul16sh7iQroCHpf+RjFBSuB2Xiw:Q0l+Z16sh7iQroCURB0uM

Score

7^/10

Malware Config

Targets

- Target
  
  2630fdea6a4b8053ce61b15916ba3ba07b52bddf902cd75257067ac9fa561dc9_NeikiAnalytics.exe
- Size
  
  44KB
- MD5
  
  9bbaba75dc13444a0f76133199090b00
- SHA1
  
  e6d4f7d95deac5468f41439caf92bdbf46f6a84c
- SHA256
  
  2630fdea6a4b8053ce61b15916ba3ba07b52bddf902cd75257067ac9fa561dc9
- SHA512
  
  a1229e7dcfe50c43f53889fc0f95afc5d104a3612ea1e1009834632c5e5657da98fc7cc7f628505b4116a1778a6ddb1eb9f55c41a78d3e7855b6863578b370b2
- SSDEEP
  
  768:Q1eRH+9lFh0ul16sh7iQroCHpf+RjFBSuB2Xiw:Q0l+Z16sh7iQroCURB0uM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2