Overview

overview

7

Static

static

3

8b221ed139...cs.exe

windows7-x64

7

8b221ed139...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8b221ed1397e5292cedcb1bbbff78600_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240601-dl5r4sgd64

  • MD5

    8b221ed1397e5292cedcb1bbbff78600

  • SHA1

    ac493a81fced7aa3b319518903d0740a1aca17f9

  • SHA256

    9e6a29973844b76186c376b1034cfac74a3b3432bf7d60f9724cc0975fc0bf95

  • SHA512

    cd8f27d06ee3816bae1f1884d305146ad1c4f948a8cd2139f1310755ea320727b322b07b29b9bd67176cdb92de2a0593b717304b18af93234cf8f21aabeebbea

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBoB/bSqz8:sxX7QnxrloE5dpUpDbVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      8b221ed1397e5292cedcb1bbbff78600_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      8b221ed1397e5292cedcb1bbbff78600

    • SHA1

      ac493a81fced7aa3b319518903d0740a1aca17f9

    • SHA256

      9e6a29973844b76186c376b1034cfac74a3b3432bf7d60f9724cc0975fc0bf95

    • SHA512

      cd8f27d06ee3816bae1f1884d305146ad1c4f948a8cd2139f1310755ea320727b322b07b29b9bd67176cdb92de2a0593b717304b18af93234cf8f21aabeebbea

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBoB/bSqz8:sxX7QnxrloE5dpUpDbVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks