General
-
Target
cda5e0d0d9a0ca874d36252cc4929cb0_NeikiAnalytics
-
Size
1.0MB
-
Sample
240514-t57c2seh93
-
MD5
cda5e0d0d9a0ca874d36252cc4929cb0
-
SHA1
84a27cab701ea27973ecc39622899fae9dcfdb9d
-
SHA256
f3503a9ede890e8522fbcf41a0214569b76017e17005dce15e03404a645ba055
-
SHA512
639875012fed67a8388cc57c1aee345f23a4fb7205d00112e280662891dc695d65bf455eb0c97a791b3ab1861b18288aec2db6580c26b782cdb461854ea5ea17
-
SSDEEP
24576:94lavt0LkLL9IMixoEgea/F/tG4S37yFyBq9MmCS:Ukwkn9IMHea/5qyAaPCS
Static task
static1
Behavioral task
behavioral1
Sample
cda5e0d0d9a0ca874d36252cc4929cb0_NeikiAnalytics.exe
Resource
win7-20240220-en
Malware Config
Extracted
formbook
4.1
se62
wkb41961shv.com
bdsxm.com
renovationslandscaping.info
qhsmgysm.com
fetbody.com
injured444.live
teensfeel.us
zi59wp1h.com
dfrtrucking.com
16milevet.com
patternzi.com
homeinsectcontrolpros.com
alcosa-peru.com
rmicompletesolutions.co.za
nnhealthhk.com
fitversus.com
hgxaf155.com
hizlitakibin.com
kjhwbk.top
gokarpemed.com
isthistheyearofsrt.com
keescollection.net
521745.cc
9072316z.vip
fukada.shop
citylinechimneytrevosepa.us
yigongqi.sbs
telehealth.fitness
seo-andorra.com
roofing-companies-in-usa.bond
hmnna.us
motoslolo55.com
bbest6.com
fafalie.buzz
miltonhess.com
gleamhorizon.shop
lupoq.xyz
465172.com
gljjw.com
839laurelwood.com
e-touwbrommer.site
4ast6.us
jalogistic.com
1658012cc.com
geenginering.com
crazyestvault.com
smartpremium.net
kinghood.co
pacificalashes.com
jolssucksmade.shop
powerfitfoods.com
loveisactionfoundation.com
blackred.bet
omf.fo
herendkdocsmicroviewj.com
qw1so.us
udioh.com
ddo-constructions.com
homeschoolgymnastics.com
dental-implants-40961.bond
foret-cineraire.net
minicartoontv.xyz
isowrdi443.xyz
laboujeebar.com
berbarry.com
Targets
-
-
Target
cda5e0d0d9a0ca874d36252cc4929cb0_NeikiAnalytics
-
Size
1.0MB
-
MD5
cda5e0d0d9a0ca874d36252cc4929cb0
-
SHA1
84a27cab701ea27973ecc39622899fae9dcfdb9d
-
SHA256
f3503a9ede890e8522fbcf41a0214569b76017e17005dce15e03404a645ba055
-
SHA512
639875012fed67a8388cc57c1aee345f23a4fb7205d00112e280662891dc695d65bf455eb0c97a791b3ab1861b18288aec2db6580c26b782cdb461854ea5ea17
-
SSDEEP
24576:94lavt0LkLL9IMixoEgea/F/tG4S37yFyBq9MmCS:Ukwkn9IMHea/5qyAaPCS
-
Formbook payload
-
Suspicious use of SetThreadContext
-