06082364022747c3a2f80fbd3e4d0dd1733d25d8632023eace0002413b2e2f6f | Triage

Sharing

General

Target

06082364022747c3a2f80fbd3e4d0dd1733d25d8632023eace0002413b2e2f6f_NeikiAnalytics.exe
Size

57KB
Sample

240628-tg4bgsyfrn
MD5

84572c52680d5a1dbbd77b10227b3060
SHA1

c126df6e87b0ed87ac1ddddf739194273254a6e8
SHA256

06082364022747c3a2f80fbd3e4d0dd1733d25d8632023eace0002413b2e2f6f
SHA512

2a95bad5c0d0e2f0bdcea08ffc763131c8e97facf91088f3ace2be35a8a95c666155d6f38378c371cee9e49c0261ae23f3c232a2ce337314f20efaf0804c176b
SSDEEP

768:zTAiYUVaQDKVRRZgqq6UFFAKcls0ceVA1JYN2BDMSdvO1TUQ:HAqamKVO6s0hVA1JH1MSdv2Z

Score

7^/10

Malware Config

Targets

- Target
  
  06082364022747c3a2f80fbd3e4d0dd1733d25d8632023eace0002413b2e2f6f_NeikiAnalytics.exe
- Size
  
  57KB
- MD5
  
  84572c52680d5a1dbbd77b10227b3060
- SHA1
  
  c126df6e87b0ed87ac1ddddf739194273254a6e8
- SHA256
  
  06082364022747c3a2f80fbd3e4d0dd1733d25d8632023eace0002413b2e2f6f
- SHA512
  
  2a95bad5c0d0e2f0bdcea08ffc763131c8e97facf91088f3ace2be35a8a95c666155d6f38378c371cee9e49c0261ae23f3c232a2ce337314f20efaf0804c176b
- SSDEEP
  
  768:zTAiYUVaQDKVRRZgqq6UFFAKcls0ceVA1JYN2BDMSdvO1TUQ:HAqamKVO6s0hVA1JH1MSdv2Z
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2