General
-
Target
d84b15bf4867c829d46d982c892ca6d0_NeikiAnalytics.exe
-
Size
264KB
-
Sample
240524-xz4xhsga9s
-
MD5
d84b15bf4867c829d46d982c892ca6d0
-
SHA1
ce577342b2d2781474d4dc2c28eaa49c7bd9ab04
-
SHA256
0b469f5e6f92d24426cc21eb9b75963387b88d9552096c1275789d4cf7bfa4cf
-
SHA512
a4abfeb729b123ffee77e98a3b1e0d1a95ea13799cb60edda265e4f0c61f674d745e04d98fb1fc5750763c999ddb7721bc49adb743beced723351541aa007c05
-
SSDEEP
6144:KaKMSD4Yuaezp0yN90QEqB3PI5ldRZY5BI7:TK3D4laTy904RP6R25G
Static task
static1
Behavioral task
behavioral1
Sample
d84b15bf4867c829d46d982c892ca6d0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
d84b15bf4867c829d46d982c892ca6d0_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Extracted
Protocol: smtp- Host:
smtp.gmail.com - Port:
587 - Username:
[email protected] - Password:
6477564775
Targets
-
-
Target
d84b15bf4867c829d46d982c892ca6d0_NeikiAnalytics.exe
-
Size
264KB
-
MD5
d84b15bf4867c829d46d982c892ca6d0
-
SHA1
ce577342b2d2781474d4dc2c28eaa49c7bd9ab04
-
SHA256
0b469f5e6f92d24426cc21eb9b75963387b88d9552096c1275789d4cf7bfa4cf
-
SHA512
a4abfeb729b123ffee77e98a3b1e0d1a95ea13799cb60edda265e4f0c61f674d745e04d98fb1fc5750763c999ddb7721bc49adb743beced723351541aa007c05
-
SSDEEP
6144:KaKMSD4Yuaezp0yN90QEqB3PI5ldRZY5BI7:TK3D4laTy904RP6R25G
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-