General

  • Target

    045242bedcdb75ebf657339c09b96510_NeikiAnalytics.exe

  • Size

    4.1MB

  • Sample

    240601-2htgnshb4w

  • MD5

    045242bedcdb75ebf657339c09b96510

  • SHA1

    b6485a78d7c5b7f8229a86d45ae63455feb5e8be

  • SHA256

    00ce9a150e9e12c9b60f272fcf2a5970d9866b0b437e82e4b574810ba608f112

  • SHA512

    b0402a20a93a621a8290d05d3d114f70cd888257fd1aff61fd051eabb60f996ecc0184e3b546454a9b27550a3ba37232a54236a655fb1f05dec1812631e02ca8

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpObVz8eLFcz

Malware Config

Targets

    • Target

      045242bedcdb75ebf657339c09b96510_NeikiAnalytics.exe

    • Size

      4.1MB

    • MD5

      045242bedcdb75ebf657339c09b96510

    • SHA1

      b6485a78d7c5b7f8229a86d45ae63455feb5e8be

    • SHA256

      00ce9a150e9e12c9b60f272fcf2a5970d9866b0b437e82e4b574810ba608f112

    • SHA512

      b0402a20a93a621a8290d05d3d114f70cd888257fd1aff61fd051eabb60f996ecc0184e3b546454a9b27550a3ba37232a54236a655fb1f05dec1812631e02ca8

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpObVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks