General
-
Target
4eca68ff7c206fb6cfe4b008282ef5d74fecc8e51e3a349985e1415a4e57d9d2_NeikiAnalytics.exe
-
Size
163KB
-
Sample
240620-k6mwcstekr
-
MD5
44ba39521862895e3cd60a5a08b2c110
-
SHA1
9b7f7c551a35e261dff9a372e7f2a35e533f7c0e
-
SHA256
4eca68ff7c206fb6cfe4b008282ef5d74fecc8e51e3a349985e1415a4e57d9d2
-
SHA512
960e4417bc7b062194686c4c9c7e5e8d2560bebc0e138ea8005a011230473028b1bbc32f5ac231f77c24cef7c210dabb17a94e09c7d46d3e8a082e6dc66a5821
-
SSDEEP
1536:PPE+OqMzk/EHNvbRtRZWebhI3MTl2XlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:k5qMVH/tjWKj2XltOrWKDBr+yJb
Static task
static1
Behavioral task
behavioral1
Sample
4eca68ff7c206fb6cfe4b008282ef5d74fecc8e51e3a349985e1415a4e57d9d2_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
4eca68ff7c206fb6cfe4b008282ef5d74fecc8e51e3a349985e1415a4e57d9d2_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
gozi
Targets
-
-
Target
4eca68ff7c206fb6cfe4b008282ef5d74fecc8e51e3a349985e1415a4e57d9d2_NeikiAnalytics.exe
-
Size
163KB
-
MD5
44ba39521862895e3cd60a5a08b2c110
-
SHA1
9b7f7c551a35e261dff9a372e7f2a35e533f7c0e
-
SHA256
4eca68ff7c206fb6cfe4b008282ef5d74fecc8e51e3a349985e1415a4e57d9d2
-
SHA512
960e4417bc7b062194686c4c9c7e5e8d2560bebc0e138ea8005a011230473028b1bbc32f5ac231f77c24cef7c210dabb17a94e09c7d46d3e8a082e6dc66a5821
-
SSDEEP
1536:PPE+OqMzk/EHNvbRtRZWebhI3MTl2XlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:k5qMVH/tjWKj2XltOrWKDBr+yJb
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-