General
-
Target
449485fa6478bcfbc3f74d4b56232370_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240522-1p2aesaa8y
-
MD5
449485fa6478bcfbc3f74d4b56232370
-
SHA1
aee35932f650fd4ef65da22cc0b48dddabd03614
-
SHA256
4d9727e5e3f23cb170c3b5ec7ca347bc777ae1e7cd6db5bb9a86c289c3444582
-
SHA512
5cd4c08bdcf56bf745b63a79a96722ed29bf8631bab6c0d3e3145316a273e264408b08ad56dd2e7b3aca4757f01bb1f99c13fb5935b16092969205bc7eec34bf
-
SSDEEP
384:5L7li/2zgq2DcEQvdhcJKLTp/NK9xaIn:JMM/Q9cIn
Static task
static1
Behavioral task
behavioral1
Sample
449485fa6478bcfbc3f74d4b56232370_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
449485fa6478bcfbc3f74d4b56232370_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
449485fa6478bcfbc3f74d4b56232370_NeikiAnalytics.exe
-
Size
12KB
-
MD5
449485fa6478bcfbc3f74d4b56232370
-
SHA1
aee35932f650fd4ef65da22cc0b48dddabd03614
-
SHA256
4d9727e5e3f23cb170c3b5ec7ca347bc777ae1e7cd6db5bb9a86c289c3444582
-
SHA512
5cd4c08bdcf56bf745b63a79a96722ed29bf8631bab6c0d3e3145316a273e264408b08ad56dd2e7b3aca4757f01bb1f99c13fb5935b16092969205bc7eec34bf
-
SSDEEP
384:5L7li/2zgq2DcEQvdhcJKLTp/NK9xaIn:JMM/Q9cIn
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-