General

  • Target

    04b2addfae3b98161675070a5e233400_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240601-2kfnlahh58

  • MD5

    04b2addfae3b98161675070a5e233400

  • SHA1

    d8ec9c00fe462802cbfcde56a67ad9df83f88ff3

  • SHA256

    d14311d871dfec2bc6b06df2c2d84d1b6a988f4bce0e2708d8ccb67c37f39f40

  • SHA512

    7c7501cba02ade7a09aeab6c4ecdcb7ba770a5fb8e3c9ac1f5d926d35620587df7e443f46af44cf5b0f72c861c067ac39281f09829aac9e44a4eddf958659d54

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bSqz8b6LNX:sxX7QnxrloE5dpUpFbVz8eLF

Malware Config

Targets

    • Target

      04b2addfae3b98161675070a5e233400_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      04b2addfae3b98161675070a5e233400

    • SHA1

      d8ec9c00fe462802cbfcde56a67ad9df83f88ff3

    • SHA256

      d14311d871dfec2bc6b06df2c2d84d1b6a988f4bce0e2708d8ccb67c37f39f40

    • SHA512

      7c7501cba02ade7a09aeab6c4ecdcb7ba770a5fb8e3c9ac1f5d926d35620587df7e443f46af44cf5b0f72c861c067ac39281f09829aac9e44a4eddf958659d54

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bSqz8b6LNX:sxX7QnxrloE5dpUpFbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks