General
-
Target
070b7f9d194e9dfcffd250ab4c110030_NeikiAnalytics.exe
-
Size
24KB
-
Sample
240527-wjje7scd2y
-
MD5
070b7f9d194e9dfcffd250ab4c110030
-
SHA1
56fa4e68cea843b15bd4dfa8edba8984f63ce231
-
SHA256
624129b3bd6d5ac338489ead065639f63864ac907de1eee581cd4ef0653a0b23
-
SHA512
5124b7d949cf31613bbc340e52e26612ec26ecf9a674ac81e2d3bfec8f85ce85a8b8891b1e35af81a43c7605b652e30f7bf852b48f6188926181111e20d2dd98
-
SSDEEP
384:aGpN5/SfmVoonJWpSu+Ip7JLyaBOEj63eVi06MCLGuWiSN1S:fhZSoEpnp7JLyWWElhCSudSNc
Behavioral task
behavioral1
Sample
070b7f9d194e9dfcffd250ab4c110030_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
070b7f9d194e9dfcffd250ab4c110030_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
070b7f9d194e9dfcffd250ab4c110030_NeikiAnalytics.exe
-
Size
24KB
-
MD5
070b7f9d194e9dfcffd250ab4c110030
-
SHA1
56fa4e68cea843b15bd4dfa8edba8984f63ce231
-
SHA256
624129b3bd6d5ac338489ead065639f63864ac907de1eee581cd4ef0653a0b23
-
SHA512
5124b7d949cf31613bbc340e52e26612ec26ecf9a674ac81e2d3bfec8f85ce85a8b8891b1e35af81a43c7605b652e30f7bf852b48f6188926181111e20d2dd98
-
SSDEEP
384:aGpN5/SfmVoonJWpSu+Ip7JLyaBOEj63eVi06MCLGuWiSN1S:fhZSoEpnp7JLyWWElhCSudSNc
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-