d46de887a3a472f3f6eff6f8d44c150b22d005ae6ac4fcf945abec817fc42ece | Triage

Submit
Reports

Overview

overview

7

Static

static

3

4298990c19...cs.exe

windows7-x64

7

4298990c19...cs.exe

windows10-2004-x64

7

Sharing

General

Target

4298990c19de3b16b5244a7d489ca7a0_NeikiAnalytics
Size

1.7MB
Sample

240514-ay4tssce89
MD5

4298990c19de3b16b5244a7d489ca7a0
SHA1

fb758d4b7980a694c58e1c8cac578f60e92c3b30
SHA256

d46de887a3a472f3f6eff6f8d44c150b22d005ae6ac4fcf945abec817fc42ece
SHA512

91c527ef566c0a7b71cef9a390295b69c5a6c0afe310f84150215a6d419cd86b2f6bb9456cc4f0cf80b2322df71a457510f85dfb754ef726ddeba1cbc5c0f7d1
SSDEEP

24576:FULzv/TaTRTNjx+mZCkt76f/24pN+XNqNG6hditW:FUvnTef9Ckt7c20+9qNxUW

Score

7^/10

discovery spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4298990c19de3b16b5244a7d489ca7a0_NeikiAnalytics.exe

Resource

win7-20240508-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

4298990c19de3b16b5244a7d489ca7a0_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

discovery spyware stealer

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  4298990c19de3b16b5244a7d489ca7a0_NeikiAnalytics
- Size
  
  1.7MB
- MD5
  
  4298990c19de3b16b5244a7d489ca7a0
- SHA1
  
  fb758d4b7980a694c58e1c8cac578f60e92c3b30
- SHA256
  
  d46de887a3a472f3f6eff6f8d44c150b22d005ae6ac4fcf945abec817fc42ece
- SHA512
  
  91c527ef566c0a7b71cef9a390295b69c5a6c0afe310f84150215a6d419cd86b2f6bb9456cc4f0cf80b2322df71a457510f85dfb754ef726ddeba1cbc5c0f7d1
- SSDEEP
  
  24576:FULzv/TaTRTNjx+mZCkt76f/24pN+XNqNG6hditW:FUvnTef9Ckt7c20+9qNxUW
Score

7^/10

spyware stealer discovery
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryspywarestealer

© 2018-2025

Terms | Privacy