General
-
Target
5f23c5fe29d4e99c992b6c5bb69799e0_NeikiAnalytics.exe
-
Size
56KB
-
Sample
240618-2km3nsyare
-
MD5
5f23c5fe29d4e99c992b6c5bb69799e0
-
SHA1
77498d7bcd1a2292f5bbde0ccf6646c406da2cd8
-
SHA256
270b2bb94948fc12d73c9cb6766a4b9920e22172e8400afc13d5db4da533e621
-
SHA512
75e090a5a905e946357e87eeb9ba74a770b7b61201ce07cd38af6a9f80ec1c09fee88fb297edb555cfacefe845350d72f427d408fd3fa90b63a66d413b99ff99
-
SSDEEP
1536:6W82C0Db1edMckBI1kmJAhTPY6pnouy8W:6n25DbaMySmJAhbvoutW
Behavioral task
behavioral1
Sample
5f23c5fe29d4e99c992b6c5bb69799e0_NeikiAnalytics.exe
Resource
win7-20240508-en
Malware Config
Extracted
urelas
218.54.47.76
218.54.47.77
218.54.47.74
Targets
-
-
Target
5f23c5fe29d4e99c992b6c5bb69799e0_NeikiAnalytics.exe
-
Size
56KB
-
MD5
5f23c5fe29d4e99c992b6c5bb69799e0
-
SHA1
77498d7bcd1a2292f5bbde0ccf6646c406da2cd8
-
SHA256
270b2bb94948fc12d73c9cb6766a4b9920e22172e8400afc13d5db4da533e621
-
SHA512
75e090a5a905e946357e87eeb9ba74a770b7b61201ce07cd38af6a9f80ec1c09fee88fb297edb555cfacefe845350d72f427d408fd3fa90b63a66d413b99ff99
-
SSDEEP
1536:6W82C0Db1edMckBI1kmJAhTPY6pnouy8W:6n25DbaMySmJAhbvoutW
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-