General

  • Target

    01a2404e0eb0537aebcd8b34887e05b0_NeikiAnalytics.exe

  • Size

    4.1MB

  • Sample

    240601-1636cahc49

  • MD5

    01a2404e0eb0537aebcd8b34887e05b0

  • SHA1

    1e3953220895047e3bfeb50e4e0f00a1283cbe88

  • SHA256

    38b4ff4f8263f0fe7658c203b04ceab9b3a0fade888902d529fafad1980215cc

  • SHA512

    66e24ba1870e61ad237502fa1688fe0a2c0116a43c216446a0e6dc07e83c5946c3ed0c62866483bc9d75944d4be49f013a07cfa727fe57f8a9634867564f759c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBzB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpwbVz8eLFcz

Malware Config

Targets

    • Target

      01a2404e0eb0537aebcd8b34887e05b0_NeikiAnalytics.exe

    • Size

      4.1MB

    • MD5

      01a2404e0eb0537aebcd8b34887e05b0

    • SHA1

      1e3953220895047e3bfeb50e4e0f00a1283cbe88

    • SHA256

      38b4ff4f8263f0fe7658c203b04ceab9b3a0fade888902d529fafad1980215cc

    • SHA512

      66e24ba1870e61ad237502fa1688fe0a2c0116a43c216446a0e6dc07e83c5946c3ed0c62866483bc9d75944d4be49f013a07cfa727fe57f8a9634867564f759c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBzB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpwbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks