General

  • Target

    4fa6825e9a77f05d51a3c286444c1390_NeikiAnalytics.exe

  • Size

    1.1MB

  • Sample

    240522-2pmbyabh56

  • MD5

    4fa6825e9a77f05d51a3c286444c1390

  • SHA1

    b27127e099bd733eef26f8a41d4e305009dffd9c

  • SHA256

    d1332563216947a41312154a0dcd2d90c3eff6c7cb43de3226abc92ee7267d84

  • SHA512

    1101e2d51902cc462a4c46ec1e2f50e63cd03f061cf05a7d830d595d58190947647fe23e9aa75f1c09f965631bb38edca21e2351530ec733d7c483efd11b5834

  • SSDEEP

    24576:535E7zbtJpTNM+wbl0fitGbna8FLk2m1X2D4brr:50Jpa+wblI7a8K2mFhbrr

Score
7/10

Malware Config

Targets

    • Target

      4fa6825e9a77f05d51a3c286444c1390_NeikiAnalytics.exe

    • Size

      1.1MB

    • MD5

      4fa6825e9a77f05d51a3c286444c1390

    • SHA1

      b27127e099bd733eef26f8a41d4e305009dffd9c

    • SHA256

      d1332563216947a41312154a0dcd2d90c3eff6c7cb43de3226abc92ee7267d84

    • SHA512

      1101e2d51902cc462a4c46ec1e2f50e63cd03f061cf05a7d830d595d58190947647fe23e9aa75f1c09f965631bb38edca21e2351530ec733d7c483efd11b5834

    • SSDEEP

      24576:535E7zbtJpTNM+wbl0fitGbna8FLk2m1X2D4brr:50Jpa+wblI7a8K2mFhbrr

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks