General
-
Target
21d9d953c7787fa93267ed32d77d3520_NeikiAnalytics.exe
-
Size
4.1MB
-
Sample
240617-ab5gtavcna
-
MD5
21d9d953c7787fa93267ed32d77d3520
-
SHA1
8768322f8663921b26de32a77176b52eaa425b57
-
SHA256
e03020aca8de5706fd04be019158808db5decf1594ed0674a9529938aff7b89a
-
SHA512
ac320d60ba9111bb99ccf4ecc068993e1c468b7815e71408fd9d8019b2be9ee533f5b9083f3cc62e76da9a7fe044f4e7d23184477b2e77684c7d238a60513737
-
SSDEEP
49152:v3Ncw4INSd5Lk6iKpssiM2IYB3Dpd84n8zonABGRzaDh0QAOnLSNQUo6FMoE:jGixpM2IYB3dZqLiu
Behavioral task
behavioral1
Sample
21d9d953c7787fa93267ed32d77d3520_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
21d9d953c7787fa93267ed32d77d3520_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
21d9d953c7787fa93267ed32d77d3520_NeikiAnalytics.exe
-
Size
4.1MB
-
MD5
21d9d953c7787fa93267ed32d77d3520
-
SHA1
8768322f8663921b26de32a77176b52eaa425b57
-
SHA256
e03020aca8de5706fd04be019158808db5decf1594ed0674a9529938aff7b89a
-
SHA512
ac320d60ba9111bb99ccf4ecc068993e1c468b7815e71408fd9d8019b2be9ee533f5b9083f3cc62e76da9a7fe044f4e7d23184477b2e77684c7d238a60513737
-
SSDEEP
49152:v3Ncw4INSd5Lk6iKpssiM2IYB3Dpd84n8zonABGRzaDh0QAOnLSNQUo6FMoE:jGixpM2IYB3dZqLiu
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-