General
-
Target
43817cf87414e9711aa482e963700e70_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240605-gx6ekagb6v
-
MD5
43817cf87414e9711aa482e963700e70
-
SHA1
f72703b2952a3adfdbd9b22e3007d75541b412ce
-
SHA256
10f938a0bb939424b061398f34c011a6350651a067ce6de2d17b1f87263882d8
-
SHA512
0ac3338829aff9cd6fbc10cb40fb52ae444604ddbb84715765d2001c6dddd9758bb495582cb789e442a813ff3a87412464ade68feb79e6e35129b993e98f561f
-
SSDEEP
384:BL7li/2z+q2DcEQvdhcJKLTp/NK9xae0:h2M/Q9ce0
Malware Config
Targets
-
-
Target
43817cf87414e9711aa482e963700e70_NeikiAnalytics.exe
-
Size
12KB
-
MD5
43817cf87414e9711aa482e963700e70
-
SHA1
f72703b2952a3adfdbd9b22e3007d75541b412ce
-
SHA256
10f938a0bb939424b061398f34c011a6350651a067ce6de2d17b1f87263882d8
-
SHA512
0ac3338829aff9cd6fbc10cb40fb52ae444604ddbb84715765d2001c6dddd9758bb495582cb789e442a813ff3a87412464ade68feb79e6e35129b993e98f561f
-
SSDEEP
384:BL7li/2z+q2DcEQvdhcJKLTp/NK9xae0:h2M/Q9ce0
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-