General

  • Target

    3f1f153c60e7a432095a9434d1bedf10_NeikiAnalytics

  • Size

    872KB

  • Sample

    240515-1rdbdadh2w

  • MD5

    3f1f153c60e7a432095a9434d1bedf10

  • SHA1

    bf35326da37d43e7a8f32e8b7a336e440580f89c

  • SHA256

    66deac497ffcfd1705d36930c252054f88deeea18235fef8a0468bc8d31059f1

  • SHA512

    46c7928614d639108f3ddc4bb1a33dcb441f141c904600a8adf8bc6203a9742b3ea33d26717fef6ce53a13760e730b7b47413b7161589d2f604125b5f28dc8a9

  • SSDEEP

    24576:QbQLHpaN7j9x7ozX0j52pMkuLoiSJVlIL29mhNq6:4/N7jA70jIpM3kiSBM29mhNq

Score
7/10

Malware Config

Targets

    • Target

      3f1f153c60e7a432095a9434d1bedf10_NeikiAnalytics

    • Size

      872KB

    • MD5

      3f1f153c60e7a432095a9434d1bedf10

    • SHA1

      bf35326da37d43e7a8f32e8b7a336e440580f89c

    • SHA256

      66deac497ffcfd1705d36930c252054f88deeea18235fef8a0468bc8d31059f1

    • SHA512

      46c7928614d639108f3ddc4bb1a33dcb441f141c904600a8adf8bc6203a9742b3ea33d26717fef6ce53a13760e730b7b47413b7161589d2f604125b5f28dc8a9

    • SSDEEP

      24576:QbQLHpaN7j9x7ozX0j52pMkuLoiSJVlIL29mhNq6:4/N7jA70jIpM3kiSBM29mhNq

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks for any installed AV software in registry

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks