Overview

overview

7

Static

static

3

2d60bb4d37...cs.exe

windows7-x64

7

2d60bb4d37...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2d60bb4d373f80c3e81438a5d093fa60_NeikiAnalytics.exe

  • Size

    3.2MB

  • Sample

    240528-cpdblacb98

  • MD5

    2d60bb4d373f80c3e81438a5d093fa60

  • SHA1

    eee33a8a6303d194f37f5006664016d66c0bface

  • SHA256

    846a04a1b41dfe064efb92fa7ff5aac806260adb7ff94acf10d4835f291932ee

  • SHA512

    edf514ebfc0cd24ac8e222947a1850fc3239e3522f0ddf944f257bd47080a8af1164d1b14c25e6cfe3829001a2b69a03c7c94e7c628d8436b70cb337bfa61d3e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpsbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2d60bb4d373f80c3e81438a5d093fa60_NeikiAnalytics.exe

    • Size

      3.2MB

    • MD5

      2d60bb4d373f80c3e81438a5d093fa60

    • SHA1

      eee33a8a6303d194f37f5006664016d66c0bface

    • SHA256

      846a04a1b41dfe064efb92fa7ff5aac806260adb7ff94acf10d4835f291932ee

    • SHA512

      edf514ebfc0cd24ac8e222947a1850fc3239e3522f0ddf944f257bd47080a8af1164d1b14c25e6cfe3829001a2b69a03c7c94e7c628d8436b70cb337bfa61d3e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpsbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks