General
-
Target
635a57a5aad400fc0468a8fe9d5ae5306828ee2c707015d9b8ba8f8f7b0e5408_NeikiAnalytics.exe
-
Size
213KB
-
Sample
240629-e6qpcs1cmd
-
MD5
572e5a5ad053c0e8c53b78ae830da350
-
SHA1
91e6db7de14cfe21a00a22a1ebe13209ae2acd2c
-
SHA256
635a57a5aad400fc0468a8fe9d5ae5306828ee2c707015d9b8ba8f8f7b0e5408
-
SHA512
c214d7fb3eba1dea4f3ece682d7ae17b2427505a216e99753a76f6e72572eac56d515fd7dec5f0877a2ca2ba0b30a0c56a4fdc58b26759097af15bd4075215da
-
SSDEEP
3072:0z56ceCR14+J2Wqp8wkc9FxtfvNw5OZw2ri+s+h0l4eVIZi4Z:0zsc/RBkp8wkWFxte5OZI+s+c4GE
Static task
static1
Behavioral task
behavioral1
Sample
635a57a5aad400fc0468a8fe9d5ae5306828ee2c707015d9b8ba8f8f7b0e5408_NeikiAnalytics.exe
Resource
win7-20240611-en
Malware Config
Extracted
gcleaner
185.172.128.90
185.172.128.69
-
url_path
/advdlc.php
Targets
-
-
Target
635a57a5aad400fc0468a8fe9d5ae5306828ee2c707015d9b8ba8f8f7b0e5408_NeikiAnalytics.exe
-
Size
213KB
-
MD5
572e5a5ad053c0e8c53b78ae830da350
-
SHA1
91e6db7de14cfe21a00a22a1ebe13209ae2acd2c
-
SHA256
635a57a5aad400fc0468a8fe9d5ae5306828ee2c707015d9b8ba8f8f7b0e5408
-
SHA512
c214d7fb3eba1dea4f3ece682d7ae17b2427505a216e99753a76f6e72572eac56d515fd7dec5f0877a2ca2ba0b30a0c56a4fdc58b26759097af15bd4075215da
-
SSDEEP
3072:0z56ceCR14+J2Wqp8wkc9FxtfvNw5OZw2ri+s+h0l4eVIZi4Z:0zsc/RBkp8wkWFxte5OZI+s+c4GE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-