General

  • Target

    01fb5909de240d8b1cebf09e3c3de640_NeikiAnalytics.exe

  • Size

    3.9MB

  • Sample

    240601-18wjaagf4s

  • MD5

    01fb5909de240d8b1cebf09e3c3de640

  • SHA1

    08db31327cb3d6e63dbd4a04e031afb2c03ab666

  • SHA256

    310a2d61ecf712702b136251c6e0f71511a8a845e581474d3c0a99ff32d1a00d

  • SHA512

    05d8607f050e5b93430108cc97e99c5c84e9e0220b622cde890ed300cbe18190a9bc33b6bfd867260947d64025c2e8a2b25844a251f43b278b559d7dc031d87a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bSqz8:sxX7QnxrloE5dpUp7bVz8

Malware Config

Targets

    • Target

      01fb5909de240d8b1cebf09e3c3de640_NeikiAnalytics.exe

    • Size

      3.9MB

    • MD5

      01fb5909de240d8b1cebf09e3c3de640

    • SHA1

      08db31327cb3d6e63dbd4a04e031afb2c03ab666

    • SHA256

      310a2d61ecf712702b136251c6e0f71511a8a845e581474d3c0a99ff32d1a00d

    • SHA512

      05d8607f050e5b93430108cc97e99c5c84e9e0220b622cde890ed300cbe18190a9bc33b6bfd867260947d64025c2e8a2b25844a251f43b278b559d7dc031d87a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bSqz8:sxX7QnxrloE5dpUp7bVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks