General
-
Target
0d19637d68c53f3cac3959a848473a60_NeikiAnalytics.exe
-
Size
128KB
-
Sample
240521-znjtbaab7x
-
MD5
0d19637d68c53f3cac3959a848473a60
-
SHA1
5f8dc94e8c019634c2a1a4b016cdf650dacb7a00
-
SHA256
9abe33680967b1a3321cf8610f2f93e16a423a5b9e5f587c77ac8819f2236f3b
-
SHA512
8897a2b619dfd240fa73d551e221027570cc2aedbc743b0be433b8adc0a64caed4f3d02c3a5f084d1e394e0ef3d053269f3f395578cfd822e5e210537b7ac3c8
-
SSDEEP
3072:VvgwhTm5amkqIJS20hD7Me+QpWT21/Blx77x19:jmhUKWyJBlx77/9
Static task
static1
Behavioral task
behavioral1
Sample
0d19637d68c53f3cac3959a848473a60_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0d19637d68c53f3cac3959a848473a60_NeikiAnalytics.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
0d19637d68c53f3cac3959a848473a60_NeikiAnalytics.exe
-
Size
128KB
-
MD5
0d19637d68c53f3cac3959a848473a60
-
SHA1
5f8dc94e8c019634c2a1a4b016cdf650dacb7a00
-
SHA256
9abe33680967b1a3321cf8610f2f93e16a423a5b9e5f587c77ac8819f2236f3b
-
SHA512
8897a2b619dfd240fa73d551e221027570cc2aedbc743b0be433b8adc0a64caed4f3d02c3a5f084d1e394e0ef3d053269f3f395578cfd822e5e210537b7ac3c8
-
SSDEEP
3072:VvgwhTm5amkqIJS20hD7Me+QpWT21/Blx77x19:jmhUKWyJBlx77/9
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-