General
-
Target
759b943cb0e94028c735c09cf1115b90_NeikiAnalytics.exe
-
Size
431KB
-
Sample
240523-cpdx5aad38
-
MD5
759b943cb0e94028c735c09cf1115b90
-
SHA1
30b0f5d6fadfc1c731d162ebc8699bca10cd25d4
-
SHA256
b7f8ee4fd4bd5ac0f50f8154b856afa82e7df842650666bb6a401210072645be
-
SHA512
8b4291ae4121583b716fea718db6607a0256437daa8a1b73750d4c83a668f79b5f48478686f59c75d4d4ae01df0762c34db3fe00312396a818b1deb402110ef3
-
SSDEEP
3072:TVmHpJqu0Vh6jw/fmZmRMpVuWwP5tOcQfgdVqYHKjoS1HwZCFjTPG1UFNE2XCKUu:TcHpJfHElepVuWwP5YcQfg8J+ojCKC+t
Behavioral task
behavioral1
Sample
759b943cb0e94028c735c09cf1115b90_NeikiAnalytics.exe
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
759b943cb0e94028c735c09cf1115b90_NeikiAnalytics.exe
-
Size
431KB
-
MD5
759b943cb0e94028c735c09cf1115b90
-
SHA1
30b0f5d6fadfc1c731d162ebc8699bca10cd25d4
-
SHA256
b7f8ee4fd4bd5ac0f50f8154b856afa82e7df842650666bb6a401210072645be
-
SHA512
8b4291ae4121583b716fea718db6607a0256437daa8a1b73750d4c83a668f79b5f48478686f59c75d4d4ae01df0762c34db3fe00312396a818b1deb402110ef3
-
SSDEEP
3072:TVmHpJqu0Vh6jw/fmZmRMpVuWwP5tOcQfgdVqYHKjoS1HwZCFjTPG1UFNE2XCKUu:TcHpJfHElepVuWwP5YcQfg8J+ojCKC+t
-
Detect Blackmoon payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-