General
-
Target
7e570a16a851247c50fb8ddbafdf1e00_NeikiAnalytics
-
Size
402KB
-
Sample
240515-e9h4pahd6z
-
MD5
7e570a16a851247c50fb8ddbafdf1e00
-
SHA1
5f95ffbe16a9eb714644aed0d4eee7e2032911e9
-
SHA256
c86deae3f86fc220bb560b03a0bbc0516f45562350923f81f6431fe283e695e1
-
SHA512
82ca9c1152c90b0658a673bcc9438f14b22e4542b2df4aa8dd3f0420b04798f3527e661e20f0530234df5d0e4cab325bcb22fda26f9507d514e6652255691f76
-
SSDEEP
6144:tzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInODAS:hU7M5ijWh0XOW4sEfeO/
Behavioral task
behavioral1
Sample
7e570a16a851247c50fb8ddbafdf1e00_NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
218.54.31.226
218.54.31.165
Targets
-
-
Target
7e570a16a851247c50fb8ddbafdf1e00_NeikiAnalytics
-
Size
402KB
-
MD5
7e570a16a851247c50fb8ddbafdf1e00
-
SHA1
5f95ffbe16a9eb714644aed0d4eee7e2032911e9
-
SHA256
c86deae3f86fc220bb560b03a0bbc0516f45562350923f81f6431fe283e695e1
-
SHA512
82ca9c1152c90b0658a673bcc9438f14b22e4542b2df4aa8dd3f0420b04798f3527e661e20f0530234df5d0e4cab325bcb22fda26f9507d514e6652255691f76
-
SSDEEP
6144:tzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInODAS:hU7M5ijWh0XOW4sEfeO/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-