General
-
Target
9f230a43561047ce08b5b86de42709197f63a678e9c576fdf1d85619c4c9dfce_NeikiAnalytics.exe
-
Size
592KB
-
Sample
240628-s5qvmaydjq
-
MD5
31afe4b9078c5cd3b9a082ff170b7740
-
SHA1
bd880eb7227d7f88ba5b4a92922dc2bf5f124422
-
SHA256
9f230a43561047ce08b5b86de42709197f63a678e9c576fdf1d85619c4c9dfce
-
SHA512
05c66de6de4471c61933e895f483bae43a1eae99a4619174561576983fe84db43bccacb1b7b63a321719feabc675c3104ae4bd27fd9de5e3c4e2219755e95551
-
SSDEEP
12288:wcWRJxhIUKofd9S88itJsL6s8GwUF81yn0FI/6IC0XoSO:TW/xhIUKofSytJsL6HUP0OHCf
Behavioral task
behavioral1
Sample
9f230a43561047ce08b5b86de42709197f63a678e9c576fdf1d85619c4c9dfce_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
9f230a43561047ce08b5b86de42709197f63a678e9c576fdf1d85619c4c9dfce_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
9f230a43561047ce08b5b86de42709197f63a678e9c576fdf1d85619c4c9dfce_NeikiAnalytics.exe
-
Size
592KB
-
MD5
31afe4b9078c5cd3b9a082ff170b7740
-
SHA1
bd880eb7227d7f88ba5b4a92922dc2bf5f124422
-
SHA256
9f230a43561047ce08b5b86de42709197f63a678e9c576fdf1d85619c4c9dfce
-
SHA512
05c66de6de4471c61933e895f483bae43a1eae99a4619174561576983fe84db43bccacb1b7b63a321719feabc675c3104ae4bd27fd9de5e3c4e2219755e95551
-
SSDEEP
12288:wcWRJxhIUKofd9S88itJsL6s8GwUF81yn0FI/6IC0XoSO:TW/xhIUKofSytJsL6HUP0OHCf
Score10/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-