General

  • Target

    020ea0ad5b0fcdd04d5ab811f6dad210_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240601-19ebdshd43

  • MD5

    020ea0ad5b0fcdd04d5ab811f6dad210

  • SHA1

    0b6b189567cebd6f112ae79961c72cfd0acf5c72

  • SHA256

    37a647dd2f942a931e0ed8ef779358be63ca6a1f0ed8cefed2ad8b0c2a95b5bb

  • SHA512

    35b392b10a858dab05721a901d0452e4f8195bde73defaf04bfcbb21e708f56d87a8b3570b8e4912dec05c70e253a05533c68e6f5564323097afa6b8cba1a8e3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8b6LNX:sxX7QnxrloE5dpUpqbVz8eLF

Malware Config

Targets

    • Target

      020ea0ad5b0fcdd04d5ab811f6dad210_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      020ea0ad5b0fcdd04d5ab811f6dad210

    • SHA1

      0b6b189567cebd6f112ae79961c72cfd0acf5c72

    • SHA256

      37a647dd2f942a931e0ed8ef779358be63ca6a1f0ed8cefed2ad8b0c2a95b5bb

    • SHA512

      35b392b10a858dab05721a901d0452e4f8195bde73defaf04bfcbb21e708f56d87a8b3570b8e4912dec05c70e253a05533c68e6f5564323097afa6b8cba1a8e3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8b6LNX:sxX7QnxrloE5dpUpqbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks