bd098e0871b9b0a7fce11616e134562c45ddfd510f13eb41e790d5ec57f36792 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b46239f8b6f70a266c8b36f454c348d0_NeikiAnalytics.exe
Size

208KB
Sample

240517-f6rgbsbd5z
MD5

b46239f8b6f70a266c8b36f454c348d0
SHA1

4a7b8f512592be7dd95b8815ce0a2eda31521a6d
SHA256

bd098e0871b9b0a7fce11616e134562c45ddfd510f13eb41e790d5ec57f36792
SHA512

b1f1043f781480597fd71b5e0301f78f94f6e1ff75cca3875a8d63e1c72136f16903c114998678ee33ff7884844232ce13d21bec61af2c6c89a1e90491ade4bc
SSDEEP

3072:QoW4d9lo7c7zqc6S9UKgXAes5rRphrok8kukm4gTjpQc6XKUK2XOesc+Rpt:QSdIdBieqRro7/7JyHaeWRL

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  b46239f8b6f70a266c8b36f454c348d0_NeikiAnalytics.exe
- Size
  
  208KB
- MD5
  
  b46239f8b6f70a266c8b36f454c348d0
- SHA1
  
  4a7b8f512592be7dd95b8815ce0a2eda31521a6d
- SHA256
  
  bd098e0871b9b0a7fce11616e134562c45ddfd510f13eb41e790d5ec57f36792
- SHA512
  
  b1f1043f781480597fd71b5e0301f78f94f6e1ff75cca3875a8d63e1c72136f16903c114998678ee33ff7884844232ce13d21bec61af2c6c89a1e90491ade4bc
- SSDEEP
  
  3072:QoW4d9lo7c7zqc6S9UKgXAes5rRphrok8kukm4gTjpQc6XKUK2XOesc+Rpt:QSdIdBieqRro7/7JyHaeWRL
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2