General
-
Target
d4e776245d334c79b5dd8bdacb58dc10_NeikiAnalytics
-
Size
38KB
-
Sample
240515-q4zp2acc4y
-
MD5
d4e776245d334c79b5dd8bdacb58dc10
-
SHA1
a73c3649f35f95b6df1007c3c1068c0554370eb3
-
SHA256
9dee91c62cf35196e21f75a643cef1cb13eab28b7698c9827cbf8c014c7373b4
-
SHA512
28a590526bb6faf3e34cb2349010a83c37865a0ff2591a3ef62782aac5d1070a501ae692307b679de987a419d4e14a830f95e8ea59cd25c474951210600f4396
-
SSDEEP
768:2mdB+lOuTHTb3JjOtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsiZ+T/QYsuRCs:ndostdgI2MyzNORQtOflIwoHNV2XBFVd
Malware Config
Targets
-
-
Target
d4e776245d334c79b5dd8bdacb58dc10_NeikiAnalytics
-
Size
38KB
-
MD5
d4e776245d334c79b5dd8bdacb58dc10
-
SHA1
a73c3649f35f95b6df1007c3c1068c0554370eb3
-
SHA256
9dee91c62cf35196e21f75a643cef1cb13eab28b7698c9827cbf8c014c7373b4
-
SHA512
28a590526bb6faf3e34cb2349010a83c37865a0ff2591a3ef62782aac5d1070a501ae692307b679de987a419d4e14a830f95e8ea59cd25c474951210600f4396
-
SSDEEP
768:2mdB+lOuTHTb3JjOtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsiZ+T/QYsuRCs:ndostdgI2MyzNORQtOflIwoHNV2XBFVd
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-