General
-
Target
16c5e87d4dc72c7456ca61cc128cede0_NeikiAnalytics.exe
-
Size
2.0MB
-
Sample
240526-vnn1tade9w
-
MD5
16c5e87d4dc72c7456ca61cc128cede0
-
SHA1
25155d25fd807151f398e322d6f45cfb80f03d58
-
SHA256
06d5526fc0804087675bce79e2cc92cd9e469b0500e7a9f891249f9e937b2fb1
-
SHA512
3c54f13bf33d9a328bcca2d755948553bdd06f63108b200341b8907d561a29d8570fa7d7f120fdab0b62386ee7a6225d2f361798e3d69ab63cc884fd55631784
-
SSDEEP
49152:fpflj2xJESmY8SgDPUc+sF+xlBKGHxj4nXH3vEniIkCKf:fpfMXiDc84VKGHSXsKf
Behavioral task
behavioral1
Sample
16c5e87d4dc72c7456ca61cc128cede0_NeikiAnalytics.exe
Resource
win7-20231129-en
Malware Config
Extracted
risepro
147.45.47.126:58709
Targets
-
-
Target
16c5e87d4dc72c7456ca61cc128cede0_NeikiAnalytics.exe
-
Size
2.0MB
-
MD5
16c5e87d4dc72c7456ca61cc128cede0
-
SHA1
25155d25fd807151f398e322d6f45cfb80f03d58
-
SHA256
06d5526fc0804087675bce79e2cc92cd9e469b0500e7a9f891249f9e937b2fb1
-
SHA512
3c54f13bf33d9a328bcca2d755948553bdd06f63108b200341b8907d561a29d8570fa7d7f120fdab0b62386ee7a6225d2f361798e3d69ab63cc884fd55631784
-
SSDEEP
49152:fpflj2xJESmY8SgDPUc+sF+xlBKGHxj4nXH3vEniIkCKf:fpfMXiDc84VKGHSXsKf
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-