Overview

overview

7

Static

static

3

33a9720f65...cs.exe

windows7-x64

7

33a9720f65...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    33a9720f65196caf040dd104bd9a34d0_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240524-29ladaef2t

  • MD5

    33a9720f65196caf040dd104bd9a34d0

  • SHA1

    26b48cc87165d484ee711491b9fb06ee2d9d65bc

  • SHA256

    04a10784b3027a3ba0fb91b386a9d4258651b19dee8cf425588c5d25230b219c

  • SHA512

    9154ca396a05731c7fd08a49e04c9efd64647e5f7702557a14e74e3139494180458305cf0180f57b1da97732252c063d826eea3438d84f95a803ba8663df1783

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8:sxX7QnxrloE5dpUpHbVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      33a9720f65196caf040dd104bd9a34d0_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      33a9720f65196caf040dd104bd9a34d0

    • SHA1

      26b48cc87165d484ee711491b9fb06ee2d9d65bc

    • SHA256

      04a10784b3027a3ba0fb91b386a9d4258651b19dee8cf425588c5d25230b219c

    • SHA512

      9154ca396a05731c7fd08a49e04c9efd64647e5f7702557a14e74e3139494180458305cf0180f57b1da97732252c063d826eea3438d84f95a803ba8663df1783

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8:sxX7QnxrloE5dpUpHbVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks