General
-
Target
b7e60bd0ae8a420b84085e63a49048c0_NeikiAnalytics
-
Size
248KB
-
Sample
240510-lj666afc8t
-
MD5
b7e60bd0ae8a420b84085e63a49048c0
-
SHA1
f24f1cc875269a72d0fe6f1e4f443ed3aa38eae4
-
SHA256
a4638474eca758b08ba11f5fc4ef41f9985c71beead1baf754a49b82c7cb93f2
-
SHA512
477972df7ac9542e21fad04ce541458cde424d49141487f3fed28a72c0e1edc4dfb8dd32932d7fe92c87355d8a805e2335739c3af0e8f722e483f1043f371895
-
SSDEEP
6144:aNUbmAUqrtodM0M5MYGmqgKnvmb7/D26rpOaX8RQFsjw+tJAwOCuAUT:FbmAU0YM0M5MaqgKnvmb7/D26dX8RQFL
Malware Config
Targets
-
-
Target
b7e60bd0ae8a420b84085e63a49048c0_NeikiAnalytics
-
Size
248KB
-
MD5
b7e60bd0ae8a420b84085e63a49048c0
-
SHA1
f24f1cc875269a72d0fe6f1e4f443ed3aa38eae4
-
SHA256
a4638474eca758b08ba11f5fc4ef41f9985c71beead1baf754a49b82c7cb93f2
-
SHA512
477972df7ac9542e21fad04ce541458cde424d49141487f3fed28a72c0e1edc4dfb8dd32932d7fe92c87355d8a805e2335739c3af0e8f722e483f1043f371895
-
SSDEEP
6144:aNUbmAUqrtodM0M5MYGmqgKnvmb7/D26rpOaX8RQFsjw+tJAwOCuAUT:FbmAU0YM0M5MaqgKnvmb7/D26dX8RQFL
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-