General
-
Target
0171042d64375e892b00e341e6319d20_NeikiAnalytics.exe
-
Size
276KB
-
Sample
240521-xrchasfb53
-
MD5
0171042d64375e892b00e341e6319d20
-
SHA1
7775c4bc882ebb3a815b080159a869d1ffad0005
-
SHA256
d4f8052c60cbcbe7eae1488b49217fcface8791da3d0c21d1c3228ae9789a83f
-
SHA512
809117b221603e221df805914a69fabe748cf87c0a164b60a8ce9a16a0d15c9ad1bde57388d9433cb8de9ce4d31e86bdf871526129e4685e16f39ca761df54cb
-
SSDEEP
6144:uHsVYT6bJzP8yjtm34v+7eOXlS5IVvgAN:gMYWbdBj5v+7h+IVr
Static task
static1
Behavioral task
behavioral1
Sample
0171042d64375e892b00e341e6319d20_NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Extracted
gcleaner
185.172.128.90
5.42.64.56
185.172.128.69
Targets
-
-
Target
0171042d64375e892b00e341e6319d20_NeikiAnalytics.exe
-
Size
276KB
-
MD5
0171042d64375e892b00e341e6319d20
-
SHA1
7775c4bc882ebb3a815b080159a869d1ffad0005
-
SHA256
d4f8052c60cbcbe7eae1488b49217fcface8791da3d0c21d1c3228ae9789a83f
-
SHA512
809117b221603e221df805914a69fabe748cf87c0a164b60a8ce9a16a0d15c9ad1bde57388d9433cb8de9ce4d31e86bdf871526129e4685e16f39ca761df54cb
-
SSDEEP
6144:uHsVYT6bJzP8yjtm34v+7eOXlS5IVvgAN:gMYWbdBj5v+7h+IVr
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-