General
-
Target
154fdd8d7a5ead17e65368304bef4670_NeikiAnalytics.exe
-
Size
4.8MB
-
Sample
240522-dx5w9aag4v
-
MD5
154fdd8d7a5ead17e65368304bef4670
-
SHA1
599d2f53163ea8aa76f48dffb34691f44a0c4608
-
SHA256
9adde015996141199f100d4601cc5be9765997170b9fcbb95a23e4b474a6ac30
-
SHA512
f88c55f9a4b98a46c15b25726f583c050f04dcd20ae9efb3589f82957f0360f3503130491c336480fdb32ef3d4507debe8881ca8e3a71b5376cdd49bd4290c9a
-
SSDEEP
98304:g2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDX:g2mDMmD2mDe2mDMmD2mDc2mDMmD2mDeW
Malware Config
Targets
-
-
Target
154fdd8d7a5ead17e65368304bef4670_NeikiAnalytics.exe
-
Size
4.8MB
-
MD5
154fdd8d7a5ead17e65368304bef4670
-
SHA1
599d2f53163ea8aa76f48dffb34691f44a0c4608
-
SHA256
9adde015996141199f100d4601cc5be9765997170b9fcbb95a23e4b474a6ac30
-
SHA512
f88c55f9a4b98a46c15b25726f583c050f04dcd20ae9efb3589f82957f0360f3503130491c336480fdb32ef3d4507debe8881ca8e3a71b5376cdd49bd4290c9a
-
SSDEEP
98304:g2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDX:g2mDMmD2mDe2mDMmD2mDc2mDMmD2mDeW
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-