General

  • Target

    579e2f65cf33f76a1b355d21aa8147ff_NeikiAnalytics.exe

  • Size

    3.9MB

  • Sample

    240516-3ggl6aec5w

  • MD5

    579e2f65cf33f76a1b355d21aa8147ff

  • SHA1

    ab4fd4314a2ccdd74fb3f05e37c0fa61bcf13081

  • SHA256

    f6835a64ad16b132838d6d01ae750aef33b5bebdf2d5a19265fa5347e1153609

  • SHA512

    9febf2abf1947f1c1691eb0eca3061132f25601e407c3d11fa7b5ea3c951831c95be167bd6acbc9fea7cc24fc00f2338f71fb78b94b2e7af6f921ccb9242c185

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8:sxX7QnxrloE5dpUpvbVz8

Malware Config

Targets

    • Target

      579e2f65cf33f76a1b355d21aa8147ff_NeikiAnalytics.exe

    • Size

      3.9MB

    • MD5

      579e2f65cf33f76a1b355d21aa8147ff

    • SHA1

      ab4fd4314a2ccdd74fb3f05e37c0fa61bcf13081

    • SHA256

      f6835a64ad16b132838d6d01ae750aef33b5bebdf2d5a19265fa5347e1153609

    • SHA512

      9febf2abf1947f1c1691eb0eca3061132f25601e407c3d11fa7b5ea3c951831c95be167bd6acbc9fea7cc24fc00f2338f71fb78b94b2e7af6f921ccb9242c185

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8:sxX7QnxrloE5dpUpvbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks