General
-
Target
a28fac3fd926351c2a878fdf4e0159d0_NeikiAnalytics.exe
-
Size
320KB
-
Sample
240517-emsplsgg48
-
MD5
a28fac3fd926351c2a878fdf4e0159d0
-
SHA1
09a64ee03d7c37fec8f6e3ef1c39f8d863b6bc09
-
SHA256
4d4ce5ba599aa5f224333c16f95f596d1e646d753c09dac3037c80ad98aa10b3
-
SHA512
146a0b2999bd594e09daffbabd1936bac037a8aa87559d21bad2a2dfe271a86209626b962c826d69bd20daf1262dcb16752d0578aee77c9c3e1ea63f166e08a0
-
SSDEEP
6144:mLtMxGKI//d8xgN3+E9xz3DfQr1w2O6EU02DPp9nrg5G35aJevhRGGhfZkEscw0V:okg9+EDEnhtHAJevHsEscw0LcLW
Malware Config
Targets
-
-
Target
a28fac3fd926351c2a878fdf4e0159d0_NeikiAnalytics.exe
-
Size
320KB
-
MD5
a28fac3fd926351c2a878fdf4e0159d0
-
SHA1
09a64ee03d7c37fec8f6e3ef1c39f8d863b6bc09
-
SHA256
4d4ce5ba599aa5f224333c16f95f596d1e646d753c09dac3037c80ad98aa10b3
-
SHA512
146a0b2999bd594e09daffbabd1936bac037a8aa87559d21bad2a2dfe271a86209626b962c826d69bd20daf1262dcb16752d0578aee77c9c3e1ea63f166e08a0
-
SSDEEP
6144:mLtMxGKI//d8xgN3+E9xz3DfQr1w2O6EU02DPp9nrg5G35aJevhRGGhfZkEscw0V:okg9+EDEnhtHAJevHsEscw0LcLW
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-