General
-
Target
0195442a40146ae56e104799b37ad130_NeikiAnalytics.exe
-
Size
7.7MB
-
Sample
240617-zsmqrsyakq
-
MD5
0195442a40146ae56e104799b37ad130
-
SHA1
b324d95a23c13b46d4cf49d13da5e09b05b34b4d
-
SHA256
173e95b15b4e431d3b7e6af2464e148154b125acd25189d5a2aac3a7882cd595
-
SHA512
834bd8f45c7ff8a155f8114607afb94abfe0abfed6893f1474feb93640f1b252d3ac16023b1e04cd7b00fac4c7b72803d676e37a375adca073d1c31e8a953af2
-
SSDEEP
98304:qKF5ScKtWqhU4t0ipTQgn7yNncfZDQQ8nRtojzU4bUuU1Vm+sxVs2lt:75ScKvhU4tbygnO1cfxtnwoLt
Behavioral task
behavioral1
Sample
0195442a40146ae56e104799b37ad130_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0195442a40146ae56e104799b37ad130_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0195442a40146ae56e104799b37ad130_NeikiAnalytics.exe
-
Size
7.7MB
-
MD5
0195442a40146ae56e104799b37ad130
-
SHA1
b324d95a23c13b46d4cf49d13da5e09b05b34b4d
-
SHA256
173e95b15b4e431d3b7e6af2464e148154b125acd25189d5a2aac3a7882cd595
-
SHA512
834bd8f45c7ff8a155f8114607afb94abfe0abfed6893f1474feb93640f1b252d3ac16023b1e04cd7b00fac4c7b72803d676e37a375adca073d1c31e8a953af2
-
SSDEEP
98304:qKF5ScKtWqhU4t0ipTQgn7yNncfZDQQ8nRtojzU4bUuU1Vm+sxVs2lt:75ScKvhU4tbygnO1cfxtnwoLt
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-