General
-
Target
61ec7aea1aa9b83d642a4d8beda609d0_NeikiAnalytics.exe
-
Size
7.1MB
-
Sample
240617-jbnczathnq
-
MD5
61ec7aea1aa9b83d642a4d8beda609d0
-
SHA1
61e843329f7ecb226df7b12abbc88576be6e92e6
-
SHA256
5ccb44785bc5cb3c6d06356a9abcf69ac9607c78139ff2c6d2cc75cb50b31ebf
-
SHA512
8f7b7d0d41a10ce4265e4664fecf2eb0b4bd53998b632991914d4f94569d7fb1e9e06aebd38a91cdac2b6ff91756d80510e48502503255a75d0134017f824031
-
SSDEEP
196608:Iu3t64FMIZETKRjPePdrQJ/Bd1WXtYPcEj9H2:H6QETKRvJH1WdfEj9H2
Behavioral task
behavioral1
Sample
61ec7aea1aa9b83d642a4d8beda609d0_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
61ec7aea1aa9b83d642a4d8beda609d0_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
61ec7aea1aa9b83d642a4d8beda609d0_NeikiAnalytics.exe
-
Size
7.1MB
-
MD5
61ec7aea1aa9b83d642a4d8beda609d0
-
SHA1
61e843329f7ecb226df7b12abbc88576be6e92e6
-
SHA256
5ccb44785bc5cb3c6d06356a9abcf69ac9607c78139ff2c6d2cc75cb50b31ebf
-
SHA512
8f7b7d0d41a10ce4265e4664fecf2eb0b4bd53998b632991914d4f94569d7fb1e9e06aebd38a91cdac2b6ff91756d80510e48502503255a75d0134017f824031
-
SSDEEP
196608:Iu3t64FMIZETKRjPePdrQJ/Bd1WXtYPcEj9H2:H6QETKRvJH1WdfEj9H2
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-