General
-
Target
27f1266099533a7472bec17679db43b0_NeikiAnalytics.exe
-
Size
75KB
-
Sample
240522-ntvxzsde2z
-
MD5
27f1266099533a7472bec17679db43b0
-
SHA1
7e64a9559d06a52e77523268d9bc4c9cd133517b
-
SHA256
1ec5d1782fe229de6be3d8f1fc019412a3e1f02cb3dcbe13484a478b51ffa4b0
-
SHA512
a8ccaa332e3615583dd707a85347d760fa539ce0cf7d494ca6902dda58d9f2ab74efb4aea424de0c87d5441e667f5adee2425401fb009924c3db34ccd3a2ff47
-
SSDEEP
1536:Ix1Qja7luy6y0s4sqfkbnAKBOKofHfHTXQLzgvnzHPowYbvrjD/L7QPbg/Dr0T3v:gOjWuyt0ZsqsXOKofHfHTXQLzgvnzHP3
Malware Config
Targets
-
-
Target
27f1266099533a7472bec17679db43b0_NeikiAnalytics.exe
-
Size
75KB
-
MD5
27f1266099533a7472bec17679db43b0
-
SHA1
7e64a9559d06a52e77523268d9bc4c9cd133517b
-
SHA256
1ec5d1782fe229de6be3d8f1fc019412a3e1f02cb3dcbe13484a478b51ffa4b0
-
SHA512
a8ccaa332e3615583dd707a85347d760fa539ce0cf7d494ca6902dda58d9f2ab74efb4aea424de0c87d5441e667f5adee2425401fb009924c3db34ccd3a2ff47
-
SSDEEP
1536:Ix1Qja7luy6y0s4sqfkbnAKBOKofHfHTXQLzgvnzHPowYbvrjD/L7QPbg/Dr0T3v:gOjWuyt0ZsqsXOKofHfHTXQLzgvnzHP3
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Drops file in System32 directory
-