Overview

overview

7

Static

static

3

669d762d37...cs.exe

windows7-x64

7

669d762d37...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    669d762d3763a6e011f740fa139e70a0_NeikiAnalytics.exe

  • Size

    4.0MB

  • Sample

    240517-ar2qvsgg9x

  • MD5

    669d762d3763a6e011f740fa139e70a0

  • SHA1

    55895bcca197f71dae446ed70ef14fafe1e55e4f

  • SHA256

    14be9451a477c33cdeac106d735da86feaf904c617ce40842a30091d49418d9b

  • SHA512

    333f283f61c3737969a49d98242888b96cfbcddca9d812fa25a38d51e8fba288ae3292e03036c8cb40ed5f42d3c2421cb9896ed98f8fb46a331f537dd61cebf2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpmbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      669d762d3763a6e011f740fa139e70a0_NeikiAnalytics.exe

    • Size

      4.0MB

    • MD5

      669d762d3763a6e011f740fa139e70a0

    • SHA1

      55895bcca197f71dae446ed70ef14fafe1e55e4f

    • SHA256

      14be9451a477c33cdeac106d735da86feaf904c617ce40842a30091d49418d9b

    • SHA512

      333f283f61c3737969a49d98242888b96cfbcddca9d812fa25a38d51e8fba288ae3292e03036c8cb40ed5f42d3c2421cb9896ed98f8fb46a331f537dd61cebf2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpmbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks