General
-
Target
71b55f0558d85976a5293764cfd69b90_NeikiAnalytics.exe
-
Size
3.6MB
-
Sample
240523-b97khahe86
-
MD5
71b55f0558d85976a5293764cfd69b90
-
SHA1
5151e2091b8c9f628449ba0fc8aee7efc95b2e10
-
SHA256
86ee7e63999c135c0477f22f1bf2724dae3f6389393c8c5ebe1a26417bb3990b
-
SHA512
25c91287f1d8cd558be11a36d516270eff10c5866b26353677ca4ce30651cd04b58ba6f3796ab268154e91c39932d1cd3ff2b08039d4a94d0b735a3c1c193bdf
-
SSDEEP
98304:gMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDZ:gMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDr
Malware Config
Targets
-
-
Target
71b55f0558d85976a5293764cfd69b90_NeikiAnalytics.exe
-
Size
3.6MB
-
MD5
71b55f0558d85976a5293764cfd69b90
-
SHA1
5151e2091b8c9f628449ba0fc8aee7efc95b2e10
-
SHA256
86ee7e63999c135c0477f22f1bf2724dae3f6389393c8c5ebe1a26417bb3990b
-
SHA512
25c91287f1d8cd558be11a36d516270eff10c5866b26353677ca4ce30651cd04b58ba6f3796ab268154e91c39932d1cd3ff2b08039d4a94d0b735a3c1c193bdf
-
SSDEEP
98304:gMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDZ:gMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDr
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-