General
-
Target
6fff3292c3b7c09842ff0c470a0eb7c0_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240523-b48klsha8z
-
MD5
6fff3292c3b7c09842ff0c470a0eb7c0
-
SHA1
95526d7ee40a92620ebc6e4223b80eab3f52e4b8
-
SHA256
50468708d2bf0a3e3d3594671c1c851d3f752d3a35a5561754f07d1a5a56771a
-
SHA512
0605bceed678a1d35ec4c0540aa9615fb3d720d5b4b25dccddb50e07a920919aeb45992273546cc77c7aef0f0b0107496b526c8441f510b79cfb0864a69c12be
-
SSDEEP
384:OL7li/2zXq2DcEQvdhcJKLTp/NK9xaDjI:YbM/Q9cDjI
Static task
static1
Behavioral task
behavioral1
Sample
6fff3292c3b7c09842ff0c470a0eb7c0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
6fff3292c3b7c09842ff0c470a0eb7c0_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
6fff3292c3b7c09842ff0c470a0eb7c0_NeikiAnalytics.exe
-
Size
12KB
-
MD5
6fff3292c3b7c09842ff0c470a0eb7c0
-
SHA1
95526d7ee40a92620ebc6e4223b80eab3f52e4b8
-
SHA256
50468708d2bf0a3e3d3594671c1c851d3f752d3a35a5561754f07d1a5a56771a
-
SHA512
0605bceed678a1d35ec4c0540aa9615fb3d720d5b4b25dccddb50e07a920919aeb45992273546cc77c7aef0f0b0107496b526c8441f510b79cfb0864a69c12be
-
SSDEEP
384:OL7li/2zXq2DcEQvdhcJKLTp/NK9xaDjI:YbM/Q9cDjI
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-