General
-
Target
9a1d494a00012d72607e80975c18d260_NeikiAnalytics
-
Size
1.1MB
-
Sample
240511-hwtj2sce6t
-
MD5
9a1d494a00012d72607e80975c18d260
-
SHA1
74bd2e7d5f846770ab8e6d077c67965b25f7df2f
-
SHA256
bf6cc829ea87f7f6ab6d89f575cefb8edf4a43dafa43f79d9680b6f446d38e4e
-
SHA512
719b5ad877d16a42901b831b8d0be673c97ff343c7a42bee1ee7552b889ca0cfc4b23ce2cee4f11283a75bbe1e10c994ccd637412534f21efa9a51251810eda9
-
SSDEEP
6144:BDCwjtev1dQ7sdtTS9lE2cmttDCwjtev1dQ7sdtTS9lE2cmtqDCwjtev1dQ7sdtT:B3sRC9f3sRC9Q3sRC9f3sRC90
Malware Config
Targets
-
-
Target
9a1d494a00012d72607e80975c18d260_NeikiAnalytics
-
Size
1.1MB
-
MD5
9a1d494a00012d72607e80975c18d260
-
SHA1
74bd2e7d5f846770ab8e6d077c67965b25f7df2f
-
SHA256
bf6cc829ea87f7f6ab6d89f575cefb8edf4a43dafa43f79d9680b6f446d38e4e
-
SHA512
719b5ad877d16a42901b831b8d0be673c97ff343c7a42bee1ee7552b889ca0cfc4b23ce2cee4f11283a75bbe1e10c994ccd637412534f21efa9a51251810eda9
-
SSDEEP
6144:BDCwjtev1dQ7sdtTS9lE2cmttDCwjtev1dQ7sdtTS9lE2cmtqDCwjtev1dQ7sdtT:B3sRC9f3sRC9Q3sRC9f3sRC90
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-