Overview

overview

7

Static

static

3

de1d36a6ff...cs.exe

windows7-x64

7

de1d36a6ff...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    de1d36a6ff0035c68b6cc2961225dc70_NeikiAnalytics

  • Size

    648KB

  • Sample

    240510-pgp2mshb86

  • MD5

    de1d36a6ff0035c68b6cc2961225dc70

  • SHA1

    6510f51bb0c701acc1cb776f558f4e9674fa78c4

  • SHA256

    4752356bcda98831d1f17283eabc33d3ba0097641184d7df41ce6277c0c25370

  • SHA512

    891fcc868b7b885bcc56d8de458b846869721840c5b45115373b0ca6d9712667b75ce2dd401d0269db1e6136310da6f7a9f62e20c73697c8f09ef3f9bb44b4a9

  • SSDEEP

    12288:mqz2DWUxTduSZpUdxB30GHrVxGnXQSaWt+DNISOgv3isiyWcn:nz2DWWTduSZpUR0GHrVQ1aW4mSOgv3iZ

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      de1d36a6ff0035c68b6cc2961225dc70_NeikiAnalytics

    • Size

      648KB

    • MD5

      de1d36a6ff0035c68b6cc2961225dc70

    • SHA1

      6510f51bb0c701acc1cb776f558f4e9674fa78c4

    • SHA256

      4752356bcda98831d1f17283eabc33d3ba0097641184d7df41ce6277c0c25370

    • SHA512

      891fcc868b7b885bcc56d8de458b846869721840c5b45115373b0ca6d9712667b75ce2dd401d0269db1e6136310da6f7a9f62e20c73697c8f09ef3f9bb44b4a9

    • SSDEEP

      12288:mqz2DWUxTduSZpUdxB30GHrVxGnXQSaWt+DNISOgv3isiyWcn:nz2DWWTduSZpUR0GHrVQ1aW4mSOgv3iZ

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks