General
-
Target
55f9cc768d78fcb9cd15157720f4a060_NeikiAnalytics
-
Size
1.1MB
-
Sample
240512-za94caeh7y
-
MD5
55f9cc768d78fcb9cd15157720f4a060
-
SHA1
1b69833fba6610ea649a08894b418c50663df1ec
-
SHA256
8a1b3f8696c61b5e839309a05eb20754b164f10714372524f8b469760cb743c5
-
SHA512
8a7aa784a7b7a2e2e07b43105c37d29157fc8a37efd3e5bfb8051948c534bc1d37623226cc289355ce99ae15dbb3f8af0bc33630a3d0e702162c47c4b322d317
-
SSDEEP
24576:lAHnh+eWsN3skA4RV1Hom2KXMmHasaHn5cTTz4Cr7sWMd5:Uh+ZkldoPK8YasaHSIbWK
Static task
static1
Behavioral task
behavioral1
Sample
55f9cc768d78fcb9cd15157720f4a060_NeikiAnalytics.exe
Resource
win7-20240220-en
Malware Config
Extracted
formbook
4.1
se62
wkb41961shv.com
bdsxm.com
renovationslandscaping.info
qhsmgysm.com
fetbody.com
injured444.live
teensfeel.us
zi59wp1h.com
dfrtrucking.com
16milevet.com
patternzi.com
homeinsectcontrolpros.com
alcosa-peru.com
rmicompletesolutions.co.za
nnhealthhk.com
fitversus.com
hgxaf155.com
hizlitakibin.com
kjhwbk.top
gokarpemed.com
isthistheyearofsrt.com
keescollection.net
521745.cc
9072316z.vip
fukada.shop
citylinechimneytrevosepa.us
yigongqi.sbs
telehealth.fitness
seo-andorra.com
roofing-companies-in-usa.bond
hmnna.us
motoslolo55.com
bbest6.com
fafalie.buzz
miltonhess.com
gleamhorizon.shop
lupoq.xyz
465172.com
gljjw.com
839laurelwood.com
e-touwbrommer.site
4ast6.us
jalogistic.com
1658012cc.com
geenginering.com
crazyestvault.com
smartpremium.net
kinghood.co
pacificalashes.com
jolssucksmade.shop
powerfitfoods.com
loveisactionfoundation.com
blackred.bet
omf.fo
herendkdocsmicroviewj.com
qw1so.us
udioh.com
ddo-constructions.com
homeschoolgymnastics.com
dental-implants-40961.bond
foret-cineraire.net
minicartoontv.xyz
isowrdi443.xyz
laboujeebar.com
berbarry.com
Targets
-
-
Target
55f9cc768d78fcb9cd15157720f4a060_NeikiAnalytics
-
Size
1.1MB
-
MD5
55f9cc768d78fcb9cd15157720f4a060
-
SHA1
1b69833fba6610ea649a08894b418c50663df1ec
-
SHA256
8a1b3f8696c61b5e839309a05eb20754b164f10714372524f8b469760cb743c5
-
SHA512
8a7aa784a7b7a2e2e07b43105c37d29157fc8a37efd3e5bfb8051948c534bc1d37623226cc289355ce99ae15dbb3f8af0bc33630a3d0e702162c47c4b322d317
-
SSDEEP
24576:lAHnh+eWsN3skA4RV1Hom2KXMmHasaHn5cTTz4Cr7sWMd5:Uh+ZkldoPK8YasaHSIbWK
-
Formbook payload
-
Suspicious use of SetThreadContext
-