General
-
Target
8a8aa0127badc3bbb6f8df37e5565855ead8ffe7df01dc78ba7e583e48472a7c_NeikiAnalytics.exe
-
Size
163KB
-
Sample
240629-kang1sxbkl
-
MD5
887147f68fc4cee5c8e1fbc3e84c9500
-
SHA1
9b7453c44e2eb38bd56834f775827daa470996b4
-
SHA256
8a8aa0127badc3bbb6f8df37e5565855ead8ffe7df01dc78ba7e583e48472a7c
-
SHA512
a9a8fbdd20aaef703a7002d7f1ccd514f241a03e79a9dc90e6e0ffb72be6b2b8f32bf409e3d0c9e0ffe9a5d6186e56e00794dd6dbc0c71c4d10be0f5d42f9973
-
SSDEEP
1536:PIVWrTMaSBpl4mPjon/dOYNcwIlkKDexr49YdcInJ/lProNVU4qNVUrk/9QbfBrN:BrIVBpKkwlIY1J/ltOrWKDBr+yJb
Static task
static1
Behavioral task
behavioral1
Sample
8a8aa0127badc3bbb6f8df37e5565855ead8ffe7df01dc78ba7e583e48472a7c_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8a8aa0127badc3bbb6f8df37e5565855ead8ffe7df01dc78ba7e583e48472a7c_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
gozi
Targets
-
-
Target
8a8aa0127badc3bbb6f8df37e5565855ead8ffe7df01dc78ba7e583e48472a7c_NeikiAnalytics.exe
-
Size
163KB
-
MD5
887147f68fc4cee5c8e1fbc3e84c9500
-
SHA1
9b7453c44e2eb38bd56834f775827daa470996b4
-
SHA256
8a8aa0127badc3bbb6f8df37e5565855ead8ffe7df01dc78ba7e583e48472a7c
-
SHA512
a9a8fbdd20aaef703a7002d7f1ccd514f241a03e79a9dc90e6e0ffb72be6b2b8f32bf409e3d0c9e0ffe9a5d6186e56e00794dd6dbc0c71c4d10be0f5d42f9973
-
SSDEEP
1536:PIVWrTMaSBpl4mPjon/dOYNcwIlkKDexr49YdcInJ/lProNVU4qNVUrk/9QbfBrN:BrIVBpKkwlIY1J/ltOrWKDBr+yJb
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-