Overview

overview

7

Static

static

3

28a60e2386...cs.exe

windows7-x64

7

28a60e2386...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    28a60e23866b795a592d8211b45243f0_NeikiAnalytics.exe

  • Size

    546KB

  • Sample

    240517-yxdszsgf91

  • MD5

    28a60e23866b795a592d8211b45243f0

  • SHA1

    1e9a9ebbc49bf320bf85d93b460d74e170a17141

  • SHA256

    8756b1266882f4c8cae88a53db5228b348df79fe69a0640f8aa926950e9630e7

  • SHA512

    1009a67a72ed1fcda10776eef79b17cbfe27c3df24ad2922e617e65445b453493b697a08ebdbe8c78d8cc3b04fd1dce9ef64200bb881cbf5c7965894c3e0e6d4

  • SSDEEP

    12288:X+EymOcB+pwPprnVmLmDsC+FU+ZOSzDBtzY7UWfR2F:XPLOsDFncLmKDZOSz1FO58

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      28a60e23866b795a592d8211b45243f0_NeikiAnalytics.exe

    • Size

      546KB

    • MD5

      28a60e23866b795a592d8211b45243f0

    • SHA1

      1e9a9ebbc49bf320bf85d93b460d74e170a17141

    • SHA256

      8756b1266882f4c8cae88a53db5228b348df79fe69a0640f8aa926950e9630e7

    • SHA512

      1009a67a72ed1fcda10776eef79b17cbfe27c3df24ad2922e617e65445b453493b697a08ebdbe8c78d8cc3b04fd1dce9ef64200bb881cbf5c7965894c3e0e6d4

    • SSDEEP

      12288:X+EymOcB+pwPprnVmLmDsC+FU+ZOSzDBtzY7UWfR2F:XPLOsDFncLmKDZOSz1FO58

    Score
    7/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks