Overview

overview

7

Static

static

3

24ca8c0247...cs.exe

windows7-x64

7

24ca8c0247...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    24ca8c0247bb93b6f17a951bbe2f1eb0_NeikiAnalytics.exe

  • Size

    3.1MB

  • Sample

    240527-h7nsyacc5x

  • MD5

    24ca8c0247bb93b6f17a951bbe2f1eb0

  • SHA1

    fbcda89e0df0ddf5ccae70cd622a64288e88899e

  • SHA256

    330a12b48d60e6e7e43cbf588dd0e35155eab9b1277ea07588e224bd81fde413

  • SHA512

    561d60437083bd57d53c4caaab8c9b67c827e936faf1669c39b04526ddbbf8b6e392f2d038ef29ca9a877e626668cc70205938e00fae557c0acff7ba299e7080

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSqz8b6LNXJqI:sxX7QnxrloE5dpUptbVz8eLFc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      24ca8c0247bb93b6f17a951bbe2f1eb0_NeikiAnalytics.exe

    • Size

      3.1MB

    • MD5

      24ca8c0247bb93b6f17a951bbe2f1eb0

    • SHA1

      fbcda89e0df0ddf5ccae70cd622a64288e88899e

    • SHA256

      330a12b48d60e6e7e43cbf588dd0e35155eab9b1277ea07588e224bd81fde413

    • SHA512

      561d60437083bd57d53c4caaab8c9b67c827e936faf1669c39b04526ddbbf8b6e392f2d038ef29ca9a877e626668cc70205938e00fae557c0acff7ba299e7080

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSqz8b6LNXJqI:sxX7QnxrloE5dpUptbVz8eLFc

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks