General
-
Target
65843c6698ceff3e63038089d07b84d0_NeikiAnalytics.exe
-
Size
228KB
-
Sample
240617-js35ra1elc
-
MD5
65843c6698ceff3e63038089d07b84d0
-
SHA1
eef5b50d429cc95c2dd929dcf75dbdeb0c834af5
-
SHA256
2495e4e93c296c6a274280e4ee606d7bff1f184df433785d0a5bdd66850526b7
-
SHA512
4da74688b6920f4f71b1599f6ace65cb894bec7b19deee43e4c653d391f5ce64bf09bc229cf92aef444be00d7ad824b8e80cd1404079b5fc350b71d4b7375a93
-
SSDEEP
3072:sr85C237R6ROXcMad8leceBYgsAFtgkYTJ+Y:k9237RY1MaiheBYgsAzUTJ+Y
Behavioral task
behavioral1
Sample
65843c6698ceff3e63038089d07b84d0_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
65843c6698ceff3e63038089d07b84d0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
65843c6698ceff3e63038089d07b84d0_NeikiAnalytics.exe
-
Size
228KB
-
MD5
65843c6698ceff3e63038089d07b84d0
-
SHA1
eef5b50d429cc95c2dd929dcf75dbdeb0c834af5
-
SHA256
2495e4e93c296c6a274280e4ee606d7bff1f184df433785d0a5bdd66850526b7
-
SHA512
4da74688b6920f4f71b1599f6ace65cb894bec7b19deee43e4c653d391f5ce64bf09bc229cf92aef444be00d7ad824b8e80cd1404079b5fc350b71d4b7375a93
-
SSDEEP
3072:sr85C237R6ROXcMad8leceBYgsAFtgkYTJ+Y:k9237RY1MaiheBYgsAzUTJ+Y
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-