2eb87850745124137af3f338f4c552695d32b41ece67c34f1ecf3b2ea724e251 | Triage

Sharing

General

Target

2eb87850745124137af3f338f4c552695d32b41ece67c34f1ecf3b2ea724e251_NeikiAnalytics.exe
Size

44KB
Sample

240626-a5zhnatglc
MD5

0889bea778adfaa815073401017be770
SHA1

30c3b6610ad3f0f55bc70a70db7b9eadbcc4c955
SHA256

2eb87850745124137af3f338f4c552695d32b41ece67c34f1ecf3b2ea724e251
SHA512

c0e14d8981067aa6458df4a7e3fd5d098b4c825282c846fa98816565d3ea460f5b2006ec73f41111a66eb79a3093ac07b78392b3ebed8c05147592fc52ee4603
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUkk:bm74zYcgT/EkM0ryfjdk

Score

7^/10

Malware Config

Targets

- Target
  
  2eb87850745124137af3f338f4c552695d32b41ece67c34f1ecf3b2ea724e251_NeikiAnalytics.exe
- Size
  
  44KB
- MD5
  
  0889bea778adfaa815073401017be770
- SHA1
  
  30c3b6610ad3f0f55bc70a70db7b9eadbcc4c955
- SHA256
  
  2eb87850745124137af3f338f4c552695d32b41ece67c34f1ecf3b2ea724e251
- SHA512
  
  c0e14d8981067aa6458df4a7e3fd5d098b4c825282c846fa98816565d3ea460f5b2006ec73f41111a66eb79a3093ac07b78392b3ebed8c05147592fc52ee4603
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUkk:bm74zYcgT/EkM0ryfjdk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2