7aab73569774be15157a1f0fc69ef80c3ff8e1c92c7a3436940150161abf89c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7aab73569774be15157a1f0fc69ef80c3ff8e1c92c7a3436940150161abf89c2_NeikiAnalytics.exe
Size

42KB
Sample

240624-qxbdvsybkl
MD5

ffe2a53d7730b2a3861da7335d2bc250
SHA1

44fe8b0c756c3001797c500a3fb182d4c97ad502
SHA256

7aab73569774be15157a1f0fc69ef80c3ff8e1c92c7a3436940150161abf89c2
SHA512

332ade7a124d962d838c6bb5958bbd6bcf1256f9015ea46e826eeb36a141799d29727d425fa6ecb97d041df8841ac07c24f728a3cded9d36d0d04efc37ed662d
SSDEEP

768:mUz4HXnmTggggggLvggggggggSvNltsdUk7Nz1XzTx6QXTDcVivMHG:BMH3lNMKkPzT8Qsk

Score

7^/10

Malware Config

Targets

- Target
  
  7aab73569774be15157a1f0fc69ef80c3ff8e1c92c7a3436940150161abf89c2_NeikiAnalytics.exe
- Size
  
  42KB
- MD5
  
  ffe2a53d7730b2a3861da7335d2bc250
- SHA1
  
  44fe8b0c756c3001797c500a3fb182d4c97ad502
- SHA256
  
  7aab73569774be15157a1f0fc69ef80c3ff8e1c92c7a3436940150161abf89c2
- SHA512
  
  332ade7a124d962d838c6bb5958bbd6bcf1256f9015ea46e826eeb36a141799d29727d425fa6ecb97d041df8841ac07c24f728a3cded9d36d0d04efc37ed662d
- SSDEEP
  
  768:mUz4HXnmTggggggLvggggggggSvNltsdUk7Nz1XzTx6QXTDcVivMHG:BMH3lNMKkPzT8Qsk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2