General
-
Target
0e9b2d207786e790458b449b7c896480_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240527-xqdc7sec7w
-
MD5
0e9b2d207786e790458b449b7c896480
-
SHA1
63d49e880031d1347a4c28c893df3837742b6593
-
SHA256
aa6846cc280e66aadbb93a413a039a08e798f97146a2a4e5e93882496770c38e
-
SHA512
adf9f385fedf16f93c7d16f652f3c44bd02b44adcc8726b5a79d5422b5f64ed3ef82a07ed3ea645b54d1ec70e6cff52890e1d4542844d9406ec235c3a19a4270
-
SSDEEP
384:VL7li/2zBq2DcEQvdhcJKLTp/NK9xa+P:1JM/Q9c+P
Static task
static1
Behavioral task
behavioral1
Sample
0e9b2d207786e790458b449b7c896480_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0e9b2d207786e790458b449b7c896480_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0e9b2d207786e790458b449b7c896480_NeikiAnalytics.exe
-
Size
12KB
-
MD5
0e9b2d207786e790458b449b7c896480
-
SHA1
63d49e880031d1347a4c28c893df3837742b6593
-
SHA256
aa6846cc280e66aadbb93a413a039a08e798f97146a2a4e5e93882496770c38e
-
SHA512
adf9f385fedf16f93c7d16f652f3c44bd02b44adcc8726b5a79d5422b5f64ed3ef82a07ed3ea645b54d1ec70e6cff52890e1d4542844d9406ec235c3a19a4270
-
SSDEEP
384:VL7li/2zBq2DcEQvdhcJKLTp/NK9xa+P:1JM/Q9c+P
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-