General
-
Target
aa70cd35793c58e9a5013b5bccae3830_NeikiAnalytics
-
Size
156KB
-
Sample
240511-layhnade99
-
MD5
aa70cd35793c58e9a5013b5bccae3830
-
SHA1
9133f9677cdbd63193620faa6925235af3e979f2
-
SHA256
c7b96befa2710ce894dd4b6a239d9e15c425138e9f0fe4194a4aa96f7119bb45
-
SHA512
e8697f113c22ad63e0c1627fa07bb23351c523c312216a9b81a211de29e6b3d8281d8c3f4e31ea1202cf72c392d1777a3de716f8665052d45f6b8f6b9cf23810
-
SSDEEP
3072:tKzhSpGbGb6JUBGnvZHpXtNLdZkkVYaZvLStH/h7yc2dV4oQZiEi9XJFoO:YdjbGb6JaGnvZZtNLdZkRapLmH8c2dnp
Malware Config
Targets
-
-
Target
aa70cd35793c58e9a5013b5bccae3830_NeikiAnalytics
-
Size
156KB
-
MD5
aa70cd35793c58e9a5013b5bccae3830
-
SHA1
9133f9677cdbd63193620faa6925235af3e979f2
-
SHA256
c7b96befa2710ce894dd4b6a239d9e15c425138e9f0fe4194a4aa96f7119bb45
-
SHA512
e8697f113c22ad63e0c1627fa07bb23351c523c312216a9b81a211de29e6b3d8281d8c3f4e31ea1202cf72c392d1777a3de716f8665052d45f6b8f6b9cf23810
-
SSDEEP
3072:tKzhSpGbGb6JUBGnvZHpXtNLdZkkVYaZvLStH/h7yc2dV4oQZiEi9XJFoO:YdjbGb6JaGnvZZtNLdZkRapLmH8c2dnp
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-