General

  • Target

    5cc3f6600aa192493f7c14c90fe7ce40_NeikiAnalytics

  • Size

    1.9MB

  • Sample

    240515-b6f85sbb5y

  • MD5

    5cc3f6600aa192493f7c14c90fe7ce40

  • SHA1

    d58e099c1d009e32145f7efd1fedcc7aaf21e90b

  • SHA256

    6d2d0f0f44f686aac141f3e2f0349160237ddaef588da8ace1cc807cdd88f884

  • SHA512

    0e5273f9c4b0ad707eab2e6a148096e8eb9b23203bef982317899b51cef0c5671e0dab313d980d7d9da83f995aee8d7b2274126be6419b61b1a78473d6aa77d6

  • SSDEEP

    24576:bA2TpLqLxA2TpLqL6+A7wnNTBbmDtaLg/DRZhf0deU/N9M+ugdM4WC6wK3Mu2EMd:FpLgpL9wnNTBbmDta4Y631T0cQ1

Malware Config

Targets

    • Target

      5cc3f6600aa192493f7c14c90fe7ce40_NeikiAnalytics

    • Size

      1.9MB

    • MD5

      5cc3f6600aa192493f7c14c90fe7ce40

    • SHA1

      d58e099c1d009e32145f7efd1fedcc7aaf21e90b

    • SHA256

      6d2d0f0f44f686aac141f3e2f0349160237ddaef588da8ace1cc807cdd88f884

    • SHA512

      0e5273f9c4b0ad707eab2e6a148096e8eb9b23203bef982317899b51cef0c5671e0dab313d980d7d9da83f995aee8d7b2274126be6419b61b1a78473d6aa77d6

    • SSDEEP

      24576:bA2TpLqLxA2TpLqL6+A7wnNTBbmDtaLg/DRZhf0deU/N9M+ugdM4WC6wK3Mu2EMd:FpLgpL9wnNTBbmDta4Y631T0cQ1

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks