General
-
Target
6cf730427776e63fb31ca147bd0de6d35006ca43e46b7cd55e64e2c2ec6db0c8_NeikiAnalytics.exe
-
Size
184KB
-
Sample
240627-kfn1qs1hnf
-
MD5
8a48a1ac9d21c20376bdefd4b5f31750
-
SHA1
d06505ca57be8571995b39a1a74ebb3328e6a023
-
SHA256
6cf730427776e63fb31ca147bd0de6d35006ca43e46b7cd55e64e2c2ec6db0c8
-
SHA512
9004f1d42593161dacd2ff2727a8701babb8c69547f03ccbe6d6ccf6710f2fc62c8f3034fcafea5dc7557d44cb94d50df9067cc175bbc2bf246ba3097aa203bd
-
SSDEEP
1536:TPwN8ukP5sZK20EGIBpwW6NeleEQ77nuUWXJmU2Ajpf8oI4KEAUgd:Thuk8QsH47nW5ppkoI4KEAUgd
Behavioral task
behavioral1
Sample
6cf730427776e63fb31ca147bd0de6d35006ca43e46b7cd55e64e2c2ec6db0c8_NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
112.175.88.207
112.175.88.208
Targets
-
-
Target
6cf730427776e63fb31ca147bd0de6d35006ca43e46b7cd55e64e2c2ec6db0c8_NeikiAnalytics.exe
-
Size
184KB
-
MD5
8a48a1ac9d21c20376bdefd4b5f31750
-
SHA1
d06505ca57be8571995b39a1a74ebb3328e6a023
-
SHA256
6cf730427776e63fb31ca147bd0de6d35006ca43e46b7cd55e64e2c2ec6db0c8
-
SHA512
9004f1d42593161dacd2ff2727a8701babb8c69547f03ccbe6d6ccf6710f2fc62c8f3034fcafea5dc7557d44cb94d50df9067cc175bbc2bf246ba3097aa203bd
-
SSDEEP
1536:TPwN8ukP5sZK20EGIBpwW6NeleEQ77nuUWXJmU2Ajpf8oI4KEAUgd:Thuk8QsH47nW5ppkoI4KEAUgd
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-