General
-
Target
549e0151d98fb8cf326ac692746ca8b0_NeikiAnalytics.exe
-
Size
83KB
-
Sample
240607-nv7ceagf24
-
MD5
549e0151d98fb8cf326ac692746ca8b0
-
SHA1
71655e27335ac9a72fd14f93106cc7495edd391b
-
SHA256
8bf1e71d289f6a7ca14da12774f18c6b1fa1afae51cf3e885cfc7dc60bb0eda9
-
SHA512
326c3b2ea4752dff1d4ff0d0a2a2ef90ca963753bc8093112172004f7f1e19f0fdbfda2a55e7914d0001e48ecd71a6240cec7e16758b1f6c1d53707f57b4ac37
-
SSDEEP
1536:Jz+jIHNv+vsFbwW6dk0QeLb4NMHriBRxiDkURA:JznH976dUCnuniDM
Behavioral task
behavioral1
Sample
549e0151d98fb8cf326ac692746ca8b0_NeikiAnalytics.exe
Resource
win7-20240508-en
Malware Config
Extracted
urelas
112.175.88.207
112.175.88.208
Targets
-
-
Target
549e0151d98fb8cf326ac692746ca8b0_NeikiAnalytics.exe
-
Size
83KB
-
MD5
549e0151d98fb8cf326ac692746ca8b0
-
SHA1
71655e27335ac9a72fd14f93106cc7495edd391b
-
SHA256
8bf1e71d289f6a7ca14da12774f18c6b1fa1afae51cf3e885cfc7dc60bb0eda9
-
SHA512
326c3b2ea4752dff1d4ff0d0a2a2ef90ca963753bc8093112172004f7f1e19f0fdbfda2a55e7914d0001e48ecd71a6240cec7e16758b1f6c1d53707f57b4ac37
-
SSDEEP
1536:Jz+jIHNv+vsFbwW6dk0QeLb4NMHriBRxiDkURA:JznH976dUCnuniDM
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-