General
-
Target
02822bdd140a1927b857484cf66e6170_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240609-2pacdafh5y
-
MD5
02822bdd140a1927b857484cf66e6170
-
SHA1
5b5cfc4790324141ad8636f029427b5a90403f8e
-
SHA256
4107a1317ca44e3bd0a2bc1915a0264027545f91443ec4373183d392779417a2
-
SHA512
20bb40be3b7061392a7b18429bd796942f6beec450d6450ff4998e2a4041e0b5dac71cbcee9ddad2848f6f5d43c094017e627992a400222dd1dbdf032ecbeb64
-
SSDEEP
384:lL7li/2zZq2DcEQvdQcJKLTp/NK9xaQY:lxMCQ9cQY
Malware Config
Targets
-
-
Target
02822bdd140a1927b857484cf66e6170_NeikiAnalytics.exe
-
Size
12KB
-
MD5
02822bdd140a1927b857484cf66e6170
-
SHA1
5b5cfc4790324141ad8636f029427b5a90403f8e
-
SHA256
4107a1317ca44e3bd0a2bc1915a0264027545f91443ec4373183d392779417a2
-
SHA512
20bb40be3b7061392a7b18429bd796942f6beec450d6450ff4998e2a4041e0b5dac71cbcee9ddad2848f6f5d43c094017e627992a400222dd1dbdf032ecbeb64
-
SSDEEP
384:lL7li/2zZq2DcEQvdQcJKLTp/NK9xaQY:lxMCQ9cQY
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-