f674595bb4a21cb2dd0c1f05f70d97698e2458584c284c60ea30ed59497595e9 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

90a295e12d...cs.exe

windows7-x64

7

90a295e12d...cs.exe

windows10-2004-x64

7

Sharing

General

Target

90a295e12d244efebe86fd8b8d7e55b0_NeikiAnalytics.exe
Size

1.6MB
Sample

240524-xgx19afe84
MD5

90a295e12d244efebe86fd8b8d7e55b0
SHA1

2aa450fd0212f77be440e8110f65763b7e192578
SHA256

f674595bb4a21cb2dd0c1f05f70d97698e2458584c284c60ea30ed59497595e9
SHA512

8b014a55257a9301716f5a9b7a295167b08e793a326c22d68b0c25d951298270f8ea45c5ce41e46c9a15dd7efc2653e50c1e33340f9a075d85b6908a454c9219
SSDEEP

12288:KCKHJx523bQwYeskMjFvm0qKWjr/pMoVx8JX8it802q3LZj+:KCK4RsRjhm0Ijr/eax8JXO02q3A

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

90a295e12d244efebe86fd8b8d7e55b0_NeikiAnalytics.exe

Resource

win7-20231129-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

90a295e12d244efebe86fd8b8d7e55b0_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  90a295e12d244efebe86fd8b8d7e55b0_NeikiAnalytics.exe
- Size
  
  1.6MB
- MD5
  
  90a295e12d244efebe86fd8b8d7e55b0
- SHA1
  
  2aa450fd0212f77be440e8110f65763b7e192578
- SHA256
  
  f674595bb4a21cb2dd0c1f05f70d97698e2458584c284c60ea30ed59497595e9
- SHA512
  
  8b014a55257a9301716f5a9b7a295167b08e793a326c22d68b0c25d951298270f8ea45c5ce41e46c9a15dd7efc2653e50c1e33340f9a075d85b6908a454c9219
- SSDEEP
  
  12288:KCKHJx523bQwYeskMjFvm0qKWjr/pMoVx8JX8it802q3LZj+:KCK4RsRjhm0Ijr/eax8JXO02q3A
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy