General
-
Target
5a18600a4aa1cf3f7d5324762deed100_NeikiAnalytics.exe
-
Size
402KB
-
Sample
240516-3nsyrseg63
-
MD5
5a18600a4aa1cf3f7d5324762deed100
-
SHA1
9ccfacb1903dc580ae72805aba0ffc5ab0d78d32
-
SHA256
dab89b47c955df52a614955fb0ceddc3a1e9dcc2bece6a3fb2786b5b03382c8a
-
SHA512
901808ea1aa21c55b99c35600f2ed3bd92fdbee2d8b467f2d48e0c6bf54d4bceb7f6f12462e5cbcfd941e472e5184ecc2bbe1b2dafdd342a6531040198908d34
-
SSDEEP
6144:GzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInOgm:oU7M5ijWh0XOW4sEfeOp
Behavioral task
behavioral1
Sample
5a18600a4aa1cf3f7d5324762deed100_NeikiAnalytics.exe
Resource
win7-20240508-en
Malware Config
Extracted
urelas
218.54.31.226
218.54.31.165
Targets
-
-
Target
5a18600a4aa1cf3f7d5324762deed100_NeikiAnalytics.exe
-
Size
402KB
-
MD5
5a18600a4aa1cf3f7d5324762deed100
-
SHA1
9ccfacb1903dc580ae72805aba0ffc5ab0d78d32
-
SHA256
dab89b47c955df52a614955fb0ceddc3a1e9dcc2bece6a3fb2786b5b03382c8a
-
SHA512
901808ea1aa21c55b99c35600f2ed3bd92fdbee2d8b467f2d48e0c6bf54d4bceb7f6f12462e5cbcfd941e472e5184ecc2bbe1b2dafdd342a6531040198908d34
-
SSDEEP
6144:GzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInOgm:oU7M5ijWh0XOW4sEfeOp
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-