General

  • Target

    90ded0ec871bfd693ab1b894fd076d60_NeikiAnalytics.exe

  • Size

    3.2MB

  • Sample

    240601-hab3wade37

  • MD5

    90ded0ec871bfd693ab1b894fd076d60

  • SHA1

    b49143b8531a81fd7a2da5b6a610e4fcadc78987

  • SHA256

    9fa7c3208f721eb8b04fd5eb7b74dbac9274a035f7b76a87340852a89ac51b39

  • SHA512

    810db20ce11de28180a22e34d4f2752f07945e6045b18c94ab8b865a3b2646616737c7a21be2f54a097446b9657a347ecbd6343f9571fdf435b84aaffd00be7e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpMbVz8eLFcz

Malware Config

Targets

    • Target

      90ded0ec871bfd693ab1b894fd076d60_NeikiAnalytics.exe

    • Size

      3.2MB

    • MD5

      90ded0ec871bfd693ab1b894fd076d60

    • SHA1

      b49143b8531a81fd7a2da5b6a610e4fcadc78987

    • SHA256

      9fa7c3208f721eb8b04fd5eb7b74dbac9274a035f7b76a87340852a89ac51b39

    • SHA512

      810db20ce11de28180a22e34d4f2752f07945e6045b18c94ab8b865a3b2646616737c7a21be2f54a097446b9657a347ecbd6343f9571fdf435b84aaffd00be7e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpMbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks