General
-
Target
84bc54069bdf4c6e791bd8c93730e8e0_NeikiAnalytics.exe
-
Size
491KB
-
Sample
240617-nmlqqsydrb
-
MD5
84bc54069bdf4c6e791bd8c93730e8e0
-
SHA1
9dee7ab9512e80af194918781877e5f9f6720a6f
-
SHA256
552621a717724034d6c694342a4c47939f7547815538cd165ab4bc52226f1eb9
-
SHA512
7439ddc9224bec08245cbb187fd449ecdb6e3912575639d58c2ba89d31bec2fbf0b66d49e9d5062772373b9aabe4c00a959bce295364059213db81c507b65bfb
-
SSDEEP
6144:k9EznwjXFw+/IbHBhe0MhIC3gCYpDOSxm/sC4PCd/9777EhD:Fw7q+/KA0M2CpSxbr877EhD
Behavioral task
behavioral1
Sample
84bc54069bdf4c6e791bd8c93730e8e0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
84bc54069bdf4c6e791bd8c93730e8e0_NeikiAnalytics.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
84bc54069bdf4c6e791bd8c93730e8e0_NeikiAnalytics.exe
-
Size
491KB
-
MD5
84bc54069bdf4c6e791bd8c93730e8e0
-
SHA1
9dee7ab9512e80af194918781877e5f9f6720a6f
-
SHA256
552621a717724034d6c694342a4c47939f7547815538cd165ab4bc52226f1eb9
-
SHA512
7439ddc9224bec08245cbb187fd449ecdb6e3912575639d58c2ba89d31bec2fbf0b66d49e9d5062772373b9aabe4c00a959bce295364059213db81c507b65bfb
-
SSDEEP
6144:k9EznwjXFw+/IbHBhe0MhIC3gCYpDOSxm/sC4PCd/9777EhD:Fw7q+/KA0M2CpSxbr877EhD
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-