General

  • Target

    cfd6cd7678d33faa91f52249d80ae5e0_NeikiAnalytics

  • Size

    1.3MB

  • Sample

    240515-nl46pafc2z

  • MD5

    cfd6cd7678d33faa91f52249d80ae5e0

  • SHA1

    2ebbbc2f5de4ccd8956375d2fde56005a101445b

  • SHA256

    0ac6441416938961ee29909ec68b45c5fff3d00119c9324a20be4329c15bc4b8

  • SHA512

    93795acdd9b7992cb7eb9451b4d816afa8183c68e6442a07274b2ab30e70d94f7e95ae42d6a256d9efaa20b7c9462c9ba97e8d68b74a2ec9e875c0326cbaf615

  • SSDEEP

    24576:Qak/7Nk4RZvyGsKZu0zoFmDcpii9iGn+66rLfJIgtEqPILWz8oDqE:Qak/vBZu+k0WdEacJRIo+E

Malware Config

Targets

    • Target

      cfd6cd7678d33faa91f52249d80ae5e0_NeikiAnalytics

    • Size

      1.3MB

    • MD5

      cfd6cd7678d33faa91f52249d80ae5e0

    • SHA1

      2ebbbc2f5de4ccd8956375d2fde56005a101445b

    • SHA256

      0ac6441416938961ee29909ec68b45c5fff3d00119c9324a20be4329c15bc4b8

    • SHA512

      93795acdd9b7992cb7eb9451b4d816afa8183c68e6442a07274b2ab30e70d94f7e95ae42d6a256d9efaa20b7c9462c9ba97e8d68b74a2ec9e875c0326cbaf615

    • SSDEEP

      24576:Qak/7Nk4RZvyGsKZu0zoFmDcpii9iGn+66rLfJIgtEqPILWz8oDqE:Qak/vBZu+k0WdEacJRIo+E

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks