General
-
Target
55fa9b49e126e3c2df5df53069bc4250_NEIKI
-
Size
84KB
-
Sample
240508-lzervahd27
-
MD5
55fa9b49e126e3c2df5df53069bc4250
-
SHA1
d0bcb1ed0b943329ed7b4353d0a5ecdedb554821
-
SHA256
01f254aae65b694ca88dda1890bb2bd8422bcd21dd9ce455173b56d4741094d5
-
SHA512
ead284edbaf7427815c66961590fb3da6ed0bc90d989a03316d0c81edffa0a05e417282a2cfb75a08b96264f03d392907262aa5c782ad594255b7352732eb9da
-
SSDEEP
1536:DEIEc5HBkoNhTOWhcPYZxAxMpBd48CArrprZodC2:gIDHNhTOWhcAZxAulSC2
Malware Config
Targets
-
-
Target
55fa9b49e126e3c2df5df53069bc4250_NEIKI
-
Size
84KB
-
MD5
55fa9b49e126e3c2df5df53069bc4250
-
SHA1
d0bcb1ed0b943329ed7b4353d0a5ecdedb554821
-
SHA256
01f254aae65b694ca88dda1890bb2bd8422bcd21dd9ce455173b56d4741094d5
-
SHA512
ead284edbaf7427815c66961590fb3da6ed0bc90d989a03316d0c81edffa0a05e417282a2cfb75a08b96264f03d392907262aa5c782ad594255b7352732eb9da
-
SSDEEP
1536:DEIEc5HBkoNhTOWhcPYZxAxMpBd48CArrprZodC2:gIDHNhTOWhcAZxAulSC2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-