b6a03576eba818be5d9adf0c915cccf4c07b4d982e92a67280c78419fc747617 | Triage

Sharing

General

Target

3fb86c7652c998c76ebcc362b76666a0_NeikiAnalytics.exe
Size

8.5MB
Sample

240528-mnat7afg4s
MD5

3fb86c7652c998c76ebcc362b76666a0
SHA1

1fc2ad5a67f4dd88d52b43d5922ad31829f1ceb0
SHA256

b6a03576eba818be5d9adf0c915cccf4c07b4d982e92a67280c78419fc747617
SHA512

92bc63c00da3e96b739a5e84a7c8a5ad853fbc1f601167182762d1be2960e66e9cb5f571f51b14490bc6480dcbcbb2d30a64d089e1f8206ab030e2e204127d93
SSDEEP

196608:tuCLTBOqTXrTaX8+gp1Dq9onJ5hrZERRxQ3jo4UWFolf7+Pj3iO:7TXacpNq9c5hlERRxA2WkSr

Score

7^/10

pyinstaller spyware stealer

Malware Config

Targets

- Target
  
  3fb86c7652c998c76ebcc362b76666a0_NeikiAnalytics.exe
- Size
  
  8.5MB
- MD5
  
  3fb86c7652c998c76ebcc362b76666a0
- SHA1
  
  1fc2ad5a67f4dd88d52b43d5922ad31829f1ceb0
- SHA256
  
  b6a03576eba818be5d9adf0c915cccf4c07b4d982e92a67280c78419fc747617
- SHA512
  
  92bc63c00da3e96b739a5e84a7c8a5ad853fbc1f601167182762d1be2960e66e9cb5f571f51b14490bc6480dcbcbb2d30a64d089e1f8206ab030e2e204127d93
- SSDEEP
  
  196608:tuCLTBOqTXrTaX8+gp1Dq9onJ5hrZERRxQ3jo4UWFolf7+Pj3iO:7TXacpNq9c5hlERRxA2WkSr
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2