General
-
Target
6f9c1b148efa471868d58444fc950d00_NeikiAnalytics.exe
-
Size
12KB
-
Sample
240613-k49bkssdjb
-
MD5
6f9c1b148efa471868d58444fc950d00
-
SHA1
cb13ebc1884e22824c8fd75e06d05f062da3ab69
-
SHA256
c6b4502bc8d09c80c6938808900478b7a32dcc5830a41008811156cf39e36ea2
-
SHA512
9d0aae77a654bfd78f2f33e1b41696a95ad7b13ebfc26eb5551133d44e10bbc1796543624a40a9eb0edb3d2bfcd793984c877c4e6ea8d80621b73e5c36a1b18a
-
SSDEEP
384:iFL7li/2zpq2DcEQvdQcJKLTp/NK9xawc:iFxMCQ9cwc
Malware Config
Targets
-
-
Target
6f9c1b148efa471868d58444fc950d00_NeikiAnalytics.exe
-
Size
12KB
-
MD5
6f9c1b148efa471868d58444fc950d00
-
SHA1
cb13ebc1884e22824c8fd75e06d05f062da3ab69
-
SHA256
c6b4502bc8d09c80c6938808900478b7a32dcc5830a41008811156cf39e36ea2
-
SHA512
9d0aae77a654bfd78f2f33e1b41696a95ad7b13ebfc26eb5551133d44e10bbc1796543624a40a9eb0edb3d2bfcd793984c877c4e6ea8d80621b73e5c36a1b18a
-
SSDEEP
384:iFL7li/2zpq2DcEQvdQcJKLTp/NK9xawc:iFxMCQ9cwc
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-