General
-
Target
5ecc1c01366849de489bfe3c7a649df0_NeikiAnalytics.exe
-
Size
89KB
-
Sample
240523-affz1sed33
-
MD5
5ecc1c01366849de489bfe3c7a649df0
-
SHA1
f585b60bbe78b7cad4e43f4a2a7b008011a836ab
-
SHA256
ea6d561bd7a5a90d2392a3d524aa8d8716e98a8a1ad9564aa6d332eebfefaa27
-
SHA512
6910cb4da4a616faaae1131d4fdf96f251a1118c27941ff4edd5a47ecf4a3fab24dd9a0538422dd46ec0cc3a4d0e67820837ace5a8acc07bdcc3c472d7fe87dd
-
SSDEEP
1536:71sMveb4lR0daHy9v7Zc86y9U4AFRfBWAEnj:BDeb4T0daHy9DZc86yGUtnj
Static task
static1
Behavioral task
behavioral1
Sample
5ecc1c01366849de489bfe3c7a649df0_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
5ecc1c01366849de489bfe3c7a649df0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
5ecc1c01366849de489bfe3c7a649df0_NeikiAnalytics.exe
-
Size
89KB
-
MD5
5ecc1c01366849de489bfe3c7a649df0
-
SHA1
f585b60bbe78b7cad4e43f4a2a7b008011a836ab
-
SHA256
ea6d561bd7a5a90d2392a3d524aa8d8716e98a8a1ad9564aa6d332eebfefaa27
-
SHA512
6910cb4da4a616faaae1131d4fdf96f251a1118c27941ff4edd5a47ecf4a3fab24dd9a0538422dd46ec0cc3a4d0e67820837ace5a8acc07bdcc3c472d7fe87dd
-
SSDEEP
1536:71sMveb4lR0daHy9v7Zc86y9U4AFRfBWAEnj:BDeb4T0daHy9DZc86yGUtnj
Score10/10-
Modifies WinLogon for persistence
-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-