General
-
Target
8a7202bf24f19c28eb7589fb0ad38d70_NeikiAnalytics
-
Size
60KB
-
Sample
240511-gcfy6sba82
-
MD5
8a7202bf24f19c28eb7589fb0ad38d70
-
SHA1
2b2e0f76dd9b19c5ebd2a1d69f09e50574c64b5f
-
SHA256
b8880c9a92531fa0e05cff545cd0c3f4648d1b7b1793d6015e44497024abd6a0
-
SHA512
bb43797d2fe3760ed6a9d7621851d8c059f5915c7096b17b7ea391ebee265951690601cc1741872b20310b972d133a971a8d9dde8c2b1432b7f5ccec02a45687
-
SSDEEP
768:OhAd82xErLr/im/UMLSNiy/QIgFFIktciFIkCd+R9eaAtevYn6gQ0WspK6D8Lx4Q:Oe+C8Qal+7Bvmm0NMx9aWyOjD5pfm
Malware Config
Targets
-
-
Target
8a7202bf24f19c28eb7589fb0ad38d70_NeikiAnalytics
-
Size
60KB
-
MD5
8a7202bf24f19c28eb7589fb0ad38d70
-
SHA1
2b2e0f76dd9b19c5ebd2a1d69f09e50574c64b5f
-
SHA256
b8880c9a92531fa0e05cff545cd0c3f4648d1b7b1793d6015e44497024abd6a0
-
SHA512
bb43797d2fe3760ed6a9d7621851d8c059f5915c7096b17b7ea391ebee265951690601cc1741872b20310b972d133a971a8d9dde8c2b1432b7f5ccec02a45687
-
SSDEEP
768:OhAd82xErLr/im/UMLSNiy/QIgFFIktciFIkCd+R9eaAtevYn6gQ0WspK6D8Lx4Q:Oe+C8Qal+7Bvmm0NMx9aWyOjD5pfm
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-