Overview

overview

7

Static

static

3

275c0950e1...cs.exe

windows7-x64

7

275c0950e1...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    275c0950e1acc56b9fb83ab95c33f9f0_NeikiAnalytics.exe

  • Size

    4.1MB

  • Sample

    240531-vskh7afa4y

  • MD5

    275c0950e1acc56b9fb83ab95c33f9f0

  • SHA1

    f6e8b07e0c57d1805e4c6fc6c3874b837c81099e

  • SHA256

    558ad82a6d72ef881da4c00b596fbea5c4ed8906ee479aff259c2239d6afb90e

  • SHA512

    c7e2769fc9d27a9482b92e1031281b3a5962cbbbac76d0997cc0772970fd3052b3186775697be5de337137bbf8f659579d05ffa1741f2ccc763dac55ab6a1699

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpWbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      275c0950e1acc56b9fb83ab95c33f9f0_NeikiAnalytics.exe

    • Size

      4.1MB

    • MD5

      275c0950e1acc56b9fb83ab95c33f9f0

    • SHA1

      f6e8b07e0c57d1805e4c6fc6c3874b837c81099e

    • SHA256

      558ad82a6d72ef881da4c00b596fbea5c4ed8906ee479aff259c2239d6afb90e

    • SHA512

      c7e2769fc9d27a9482b92e1031281b3a5962cbbbac76d0997cc0772970fd3052b3186775697be5de337137bbf8f659579d05ffa1741f2ccc763dac55ab6a1699

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpWbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks