General
-
Target
37d1b142d325b813199f5813dd979080_NeikiAnalytics.exe
-
Size
5.0MB
-
Sample
240522-zkw98sgb44
-
MD5
37d1b142d325b813199f5813dd979080
-
SHA1
e96382c98158c0eb95ceb70aa5dda6704d147736
-
SHA256
cbd85644ce1bc4e2504a82e421ad92eef9cb3051625f4e05e8d2a064531e7b55
-
SHA512
7bd7d96e84efe037a3e4164b7a5b87660e28cfe1dc3b2645d7ce99a3b7f17252bd5d63258996f010e35b9b3ad6f1aa29eb162228262effe263c13954108a512d
-
SSDEEP
98304:gc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDI:gc2mDMmD2mDe2mDMmD2mDc2mDMmD2mD6
Malware Config
Targets
-
-
Target
37d1b142d325b813199f5813dd979080_NeikiAnalytics.exe
-
Size
5.0MB
-
MD5
37d1b142d325b813199f5813dd979080
-
SHA1
e96382c98158c0eb95ceb70aa5dda6704d147736
-
SHA256
cbd85644ce1bc4e2504a82e421ad92eef9cb3051625f4e05e8d2a064531e7b55
-
SHA512
7bd7d96e84efe037a3e4164b7a5b87660e28cfe1dc3b2645d7ce99a3b7f17252bd5d63258996f010e35b9b3ad6f1aa29eb162228262effe263c13954108a512d
-
SSDEEP
98304:gc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDI:gc2mDMmD2mDe2mDMmD2mDc2mDMmD2mD6
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-