General
-
Target
e3dfe4d509571e83a2168827b698e720_NeikiAnalytics
-
Size
89KB
-
Sample
240516-s7fsfaca88
-
MD5
e3dfe4d509571e83a2168827b698e720
-
SHA1
07683550aaa05286e33f6acaab463f9dab690411
-
SHA256
3fdc38fba23ba9aa75cf72eb037253370b011b6cb768df692966fbb38fa1f44a
-
SHA512
88c875651016527a1bbda29de69c68773cbbd3cc93e70d0fec9d5fff29c957dd0466519816b9c68a4349a09e4b2ef5abda1240743343843932c282991a2e7023
-
SSDEEP
768:UOQJXKb6K4Fd6eUCRGIIPP1y7oLacaIBLP3ner42Q:UVJrTFTUCxQ1aZr42Q
Malware Config
Targets
-
-
Target
e3dfe4d509571e83a2168827b698e720_NeikiAnalytics
-
Size
89KB
-
MD5
e3dfe4d509571e83a2168827b698e720
-
SHA1
07683550aaa05286e33f6acaab463f9dab690411
-
SHA256
3fdc38fba23ba9aa75cf72eb037253370b011b6cb768df692966fbb38fa1f44a
-
SHA512
88c875651016527a1bbda29de69c68773cbbd3cc93e70d0fec9d5fff29c957dd0466519816b9c68a4349a09e4b2ef5abda1240743343843932c282991a2e7023
-
SSDEEP
768:UOQJXKb6K4Fd6eUCRGIIPP1y7oLacaIBLP3ner42Q:UVJrTFTUCxQ1aZr42Q
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-