General
-
Target
5fbd50e7f089f467a1f04ead56866240_NeikiAnalytics.exe
-
Size
124KB
-
Sample
240523-ajfhnaec9w
-
MD5
5fbd50e7f089f467a1f04ead56866240
-
SHA1
9b8a8f42bf93b608db61b216aef5d1ef33f42eb6
-
SHA256
f45fe01d88d2b07920a86c8086d610919fc204e377c2891643c938485b95057c
-
SHA512
09ebbf4814843065f5e10c7bcef94c11771ef16046cac8d864c3a01a0c480e8d5265c0c29228768e862271ac202c3a6239065ebf98af5f328d07835ef8931c3d
-
SSDEEP
1536:HCszG5YyZhRO/N69BH3OoGa+FL9jKceRgrkjSo:iGEYyZhkFoN3Oo1+F92S
Malware Config
Targets
-
-
Target
5fbd50e7f089f467a1f04ead56866240_NeikiAnalytics.exe
-
Size
124KB
-
MD5
5fbd50e7f089f467a1f04ead56866240
-
SHA1
9b8a8f42bf93b608db61b216aef5d1ef33f42eb6
-
SHA256
f45fe01d88d2b07920a86c8086d610919fc204e377c2891643c938485b95057c
-
SHA512
09ebbf4814843065f5e10c7bcef94c11771ef16046cac8d864c3a01a0c480e8d5265c0c29228768e862271ac202c3a6239065ebf98af5f328d07835ef8931c3d
-
SSDEEP
1536:HCszG5YyZhRO/N69BH3OoGa+FL9jKceRgrkjSo:iGEYyZhkFoN3Oo1+F92S
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-