General
-
Target
563ec7c004371e55dbcabdefe0a068a0_NeikiAnalytics.exe
-
Size
6.4MB
-
Sample
240605-qmezasge4t
-
MD5
563ec7c004371e55dbcabdefe0a068a0
-
SHA1
f37214fbf7124578f0bfa4e5793cf79cb0e0a0b8
-
SHA256
d9ca4bb93c3b8d1e662f0bbb62db56b1de422ba641a51affc7f6ec5ecf1b7f7a
-
SHA512
6223244be3a7b48095b5264060bb1066c2d4a94ca6b103dd97aa8ae47aaf249b2f3f12da6684ceafe0cc7923661ef49e62814162171abdd23a79b0115647d6f0
-
SSDEEP
98304:Roc5swrA2XGxlHKcjTjNk3o659yrnfKtDrKIAyyks+Ctf8mQZVSX:i0LrA2kHKQHNk3og9unipQyOaOX
Static task
static1
Behavioral task
behavioral1
Sample
563ec7c004371e55dbcabdefe0a068a0_NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
218.54.31.165
218.54.31.226
Targets
-
-
Target
563ec7c004371e55dbcabdefe0a068a0_NeikiAnalytics.exe
-
Size
6.4MB
-
MD5
563ec7c004371e55dbcabdefe0a068a0
-
SHA1
f37214fbf7124578f0bfa4e5793cf79cb0e0a0b8
-
SHA256
d9ca4bb93c3b8d1e662f0bbb62db56b1de422ba641a51affc7f6ec5ecf1b7f7a
-
SHA512
6223244be3a7b48095b5264060bb1066c2d4a94ca6b103dd97aa8ae47aaf249b2f3f12da6684ceafe0cc7923661ef49e62814162171abdd23a79b0115647d6f0
-
SSDEEP
98304:Roc5swrA2XGxlHKcjTjNk3o659yrnfKtDrKIAyyks+Ctf8mQZVSX:i0LrA2kHKQHNk3og9unipQyOaOX
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-