General
-
Target
909c2ac7287a86ee99b3e3fa8e507a30_NeikiAnalytics.exe
-
Size
1.4MB
-
Sample
240619-f5kbmavcnc
-
MD5
909c2ac7287a86ee99b3e3fa8e507a30
-
SHA1
399ba778224593cbaeec49a2d842e4cf475c899d
-
SHA256
985d31adae8c3af59d71b7343536b91d47324f9d3cf4fe9054cd7de7d91eae90
-
SHA512
2ed3bf7b8e68f35f660f395696bc965271743872e9437e196b82bc0d4a0ab48add499e7b6be667516d0a758e858a7ba19852d49047c0f7113d00f63a90a9bbc7
-
SSDEEP
24576:x2G/nvxW3Wna/Cgz6ftdC8r+e3EdTjSZ9kUPDELd77P960eT:xbA3b/C06pr+bTWrwLd77PYb
Behavioral task
behavioral1
Sample
909c2ac7287a86ee99b3e3fa8e507a30_NeikiAnalytics.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
909c2ac7287a86ee99b3e3fa8e507a30_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
909c2ac7287a86ee99b3e3fa8e507a30_NeikiAnalytics.exe
-
Size
1.4MB
-
MD5
909c2ac7287a86ee99b3e3fa8e507a30
-
SHA1
399ba778224593cbaeec49a2d842e4cf475c899d
-
SHA256
985d31adae8c3af59d71b7343536b91d47324f9d3cf4fe9054cd7de7d91eae90
-
SHA512
2ed3bf7b8e68f35f660f395696bc965271743872e9437e196b82bc0d4a0ab48add499e7b6be667516d0a758e858a7ba19852d49047c0f7113d00f63a90a9bbc7
-
SSDEEP
24576:x2G/nvxW3Wna/Cgz6ftdC8r+e3EdTjSZ9kUPDELd77P960eT:xbA3b/C06pr+bTWrwLd77PYb
Score10/10-
DcRat
DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-