General
-
Target
aa4720f4b2006ecf328b23ed75eaa540_NeikiAnalytics
-
Size
200KB
-
Sample
240511-k9c6bsag7y
-
MD5
aa4720f4b2006ecf328b23ed75eaa540
-
SHA1
a18df6a0f0626bcdb6b0ce7e23b4988c7b5138a9
-
SHA256
dda6924a9e1b9ab732cc9dcba4be297c2d227a5c165e2c9084897e8996076f73
-
SHA512
ba78ae68a90a86dd10091482ed22028455de1033a1efb85b08f815b540ae617d247cdf7d415b427ac868b74eab492badf7a874bcb0551c6bf37c02873b2b069b
-
SSDEEP
3072:J2Dv9SgZ8jprujIivwslnsn9+JuJbfoL2wVHTZhQTWVyc+LpfJQlKT+C4tr:c9SUvwslnsn9+JuJbfoL2wVH9eI+NJgV
Malware Config
Targets
-
-
Target
aa4720f4b2006ecf328b23ed75eaa540_NeikiAnalytics
-
Size
200KB
-
MD5
aa4720f4b2006ecf328b23ed75eaa540
-
SHA1
a18df6a0f0626bcdb6b0ce7e23b4988c7b5138a9
-
SHA256
dda6924a9e1b9ab732cc9dcba4be297c2d227a5c165e2c9084897e8996076f73
-
SHA512
ba78ae68a90a86dd10091482ed22028455de1033a1efb85b08f815b540ae617d247cdf7d415b427ac868b74eab492badf7a874bcb0551c6bf37c02873b2b069b
-
SSDEEP
3072:J2Dv9SgZ8jprujIivwslnsn9+JuJbfoL2wVHTZhQTWVyc+LpfJQlKT+C4tr:c9SUvwslnsn9+JuJbfoL2wVH9eI+NJgV
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-