General
-
Target
3da9b21fe7a0ce4fdb4ae020982e5b20_NeikiAnalytics.exe
-
Size
903KB
-
Sample
240612-qkf4kswejg
-
MD5
3da9b21fe7a0ce4fdb4ae020982e5b20
-
SHA1
f327d390020437538fbc7d72ea6e09bcdb846d0c
-
SHA256
7791d6f0b4fb6b9803710c629bf8be7d618f61044364f5048504bf429559f65b
-
SHA512
10b141ad28e6b38d0e701f5317f3cca307b72a31c8d73e5e8f41c67ed2269affa507ce346a83de3e9878413b90efe02a38421ec504c7cc93eb9ffafd291ebaf6
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5r:gh+ZkldoPK8YaKGr
Static task
static1
Behavioral task
behavioral1
Sample
3da9b21fe7a0ce4fdb4ae020982e5b20_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
3da9b21fe7a0ce4fdb4ae020982e5b20_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
revengerat
Marzo26
marzorevenger.duckdns.org:4230
RV_MUTEX-PiGGjjtnxDpn
Targets
-
-
Target
3da9b21fe7a0ce4fdb4ae020982e5b20_NeikiAnalytics.exe
-
Size
903KB
-
MD5
3da9b21fe7a0ce4fdb4ae020982e5b20
-
SHA1
f327d390020437538fbc7d72ea6e09bcdb846d0c
-
SHA256
7791d6f0b4fb6b9803710c629bf8be7d618f61044364f5048504bf429559f65b
-
SHA512
10b141ad28e6b38d0e701f5317f3cca307b72a31c8d73e5e8f41c67ed2269affa507ce346a83de3e9878413b90efe02a38421ec504c7cc93eb9ffafd291ebaf6
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5r:gh+ZkldoPK8YaKGr
Score10/10-
Drops startup file
-
Suspicious use of SetThreadContext
-