3be871d59fc2122cd1a7b0bcdae3a12028d1b1877ba34e0567f30c3a6a18deff | Triage

Sharing

General

Target

619f9a9fd184c9bc49074bee66ac5c40_NeikiAnalytics.exe
Size

2.0MB
Sample

240523-aqlm9aeg65
MD5

619f9a9fd184c9bc49074bee66ac5c40
SHA1

a86d501b1e6ae7d777700df1a984fb062aa03e77
SHA256

3be871d59fc2122cd1a7b0bcdae3a12028d1b1877ba34e0567f30c3a6a18deff
SHA512

7c5aae4b8e7d1fb728aeb457d71f6193e9d817c7e85a944aa7c22effa6243be1997d3cce8fbf0902c389d859e677cad12ab4f4e25cacdb6f95a52458de09b22a
SSDEEP

24576:tTU/yq8B9xS2agRLbGvebODDVv7DxAZquHPH9k:tTU/G9xS2agRL6COVzDOQ0K

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  619f9a9fd184c9bc49074bee66ac5c40_NeikiAnalytics.exe
- Size
  
  2.0MB
- MD5
  
  619f9a9fd184c9bc49074bee66ac5c40
- SHA1
  
  a86d501b1e6ae7d777700df1a984fb062aa03e77
- SHA256
  
  3be871d59fc2122cd1a7b0bcdae3a12028d1b1877ba34e0567f30c3a6a18deff
- SHA512
  
  7c5aae4b8e7d1fb728aeb457d71f6193e9d817c7e85a944aa7c22effa6243be1997d3cce8fbf0902c389d859e677cad12ab4f4e25cacdb6f95a52458de09b22a
- SSDEEP
  
  24576:tTU/yq8B9xS2agRLbGvebODDVv7DxAZquHPH9k:tTU/G9xS2agRL6COVzDOQ0K
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1