General
-
Target
25dce2a633c13a11aa8da92d3d4e89f0NeikiAnalytics.exe
-
Size
81KB
-
Sample
240527-jqg5hach8x
-
MD5
25dce2a633c13a11aa8da92d3d4e89f0
-
SHA1
0f0e4c1b5ebdaafc417707093add0e6df539a19b
-
SHA256
ad5228f7380b3e4cb84bc0df5b97dfa408e1cb0cba3c97c8573d7f719bac0056
-
SHA512
96c1f5782b84fde2d25468b74b63e24b9f8eab338058b3d3eda222588dc14cd0a3010e91818bdd67b037e9d4e2757ce65883543bda8a6690c06e69e03676258c
-
SSDEEP
1536:USXnXH5qT8VyNmJXaWMaRxtnn31bbmr3BdpTvcEYlkZppA:U2XvZzMaRDn31fmaEYWppA
Behavioral task
behavioral1
Sample
25dce2a633c13a11aa8da92d3d4e89f0NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Extracted
pony
http://72.37.220.10:8080/pony/gate.php
http://184.154.70.68/pony/gate.php
-
payload_url
http://5716231.sites.myregisteredsite.com/qxVyx0yv/qr41J.exe
http://heiligenblutmusic.com/jCGa019K/baxucBV5.exe
http://couponelle.ru/2UR9G4dZ/1W66.exe
http://publiquedigital.com.br/UycmVBHE/H9iWi7.exe
Targets
-
-
Target
25dce2a633c13a11aa8da92d3d4e89f0NeikiAnalytics.exe
-
Size
81KB
-
MD5
25dce2a633c13a11aa8da92d3d4e89f0
-
SHA1
0f0e4c1b5ebdaafc417707093add0e6df539a19b
-
SHA256
ad5228f7380b3e4cb84bc0df5b97dfa408e1cb0cba3c97c8573d7f719bac0056
-
SHA512
96c1f5782b84fde2d25468b74b63e24b9f8eab338058b3d3eda222588dc14cd0a3010e91818bdd67b037e9d4e2757ce65883543bda8a6690c06e69e03676258c
-
SSDEEP
1536:USXnXH5qT8VyNmJXaWMaRxtnn31bbmr3BdpTvcEYlkZppA:U2XvZzMaRDn31fmaEYWppA
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-