General
-
Target
9f975a5f43dfcfe20a12f62bc4052170_NeikiAnalytics.exe
-
Size
357KB
-
Sample
240523-21dtyacf76
-
MD5
9f975a5f43dfcfe20a12f62bc4052170
-
SHA1
c7bc077fc383b46f27dbc7bc6ede2685b714b24c
-
SHA256
68a744262f15853f21c5ac107b037102e914832861ae8f9f053b9de9ac048d47
-
SHA512
978cf07790ede37c70a95885c402fcc2d176d308ed256cfe015a62b5b312b1d104a910824984dfe47d9eb8a30a862666e87c8b8ec8ff1d2daeaedf9b65a2e440
-
SSDEEP
6144:mvk3Q5ibjnNuuXckaL7pbRBkce97aw/N4L7o4:mvMQ5ibjnwka3pbRC19Gw/Nso4
Behavioral task
behavioral1
Sample
9f975a5f43dfcfe20a12f62bc4052170_NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
9f975a5f43dfcfe20a12f62bc4052170_NeikiAnalytics.exe
-
Size
357KB
-
MD5
9f975a5f43dfcfe20a12f62bc4052170
-
SHA1
c7bc077fc383b46f27dbc7bc6ede2685b714b24c
-
SHA256
68a744262f15853f21c5ac107b037102e914832861ae8f9f053b9de9ac048d47
-
SHA512
978cf07790ede37c70a95885c402fcc2d176d308ed256cfe015a62b5b312b1d104a910824984dfe47d9eb8a30a862666e87c8b8ec8ff1d2daeaedf9b65a2e440
-
SSDEEP
6144:mvk3Q5ibjnNuuXckaL7pbRBkce97aw/N4L7o4:mvMQ5ibjnwka3pbRC19Gw/Nso4
-
Detect Blackmoon payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-