General

  • Target

    042359bcbc84440e3cc0a28d613d24f0_NeikiAnalytics.exe

  • Size

    71KB

  • Sample

    240601-2g1vcshb2t

  • MD5

    042359bcbc84440e3cc0a28d613d24f0

  • SHA1

    d4937a2c59899d5ab205e07a1f40d3af23a9a0ce

  • SHA256

    9840bd973189f4d22a6752191ac50b992bf9a0baacbd89f46a1b80d4a1a5fba1

  • SHA512

    15b616f966e7965a4fc787de61811ed34c79c4393201ede863ea912eb34cc07df2d2eedee25418d513313efef1c65911d79f1b253d59f0e1e8dbdd3087eac44a

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTT:ZhpAyazIlyazTT

Malware Config

Targets

    • Target

      042359bcbc84440e3cc0a28d613d24f0_NeikiAnalytics.exe

    • Size

      71KB

    • MD5

      042359bcbc84440e3cc0a28d613d24f0

    • SHA1

      d4937a2c59899d5ab205e07a1f40d3af23a9a0ce

    • SHA256

      9840bd973189f4d22a6752191ac50b992bf9a0baacbd89f46a1b80d4a1a5fba1

    • SHA512

      15b616f966e7965a4fc787de61811ed34c79c4393201ede863ea912eb34cc07df2d2eedee25418d513313efef1c65911d79f1b253d59f0e1e8dbdd3087eac44a

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTT:ZhpAyazIlyazTT

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks