General

  • Target

    91401a8d0e0d9b5ad8fb727fc8211ec0_NeikiAnalytics.exe

  • Size

    3.1MB

  • Sample

    240601-hhqk8sda7v

  • MD5

    91401a8d0e0d9b5ad8fb727fc8211ec0

  • SHA1

    2cd2642a91f866416e5dc69b1f66563b0eb93d19

  • SHA256

    678bfa39a64d33554bcc69eca7ee71c1592942c8e84155bff8f5f1e883f252ee

  • SHA512

    1888e94a137772824335286e9023449c1cd39b9d598fc9f1358a12f4cc30ca011bc0199dd6caa191ebb9821e7db28055f24dfd69d2b6e85a69f0b8316ea0c117

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpHbVz8eLFc

Malware Config

Targets

    • Target

      91401a8d0e0d9b5ad8fb727fc8211ec0_NeikiAnalytics.exe

    • Size

      3.1MB

    • MD5

      91401a8d0e0d9b5ad8fb727fc8211ec0

    • SHA1

      2cd2642a91f866416e5dc69b1f66563b0eb93d19

    • SHA256

      678bfa39a64d33554bcc69eca7ee71c1592942c8e84155bff8f5f1e883f252ee

    • SHA512

      1888e94a137772824335286e9023449c1cd39b9d598fc9f1358a12f4cc30ca011bc0199dd6caa191ebb9821e7db28055f24dfd69d2b6e85a69f0b8316ea0c117

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpHbVz8eLFc

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks