General

  • Target

    92ccc0afbc7ad7d2c70c7375b4f04c90_NeikiAnalytics.exe

  • Size

    4.1MB

  • Sample

    240601-jdkd4aeh72

  • MD5

    92ccc0afbc7ad7d2c70c7375b4f04c90

  • SHA1

    4408c6e01094f219b37156e28c70ee245ea3b5ca

  • SHA256

    f8ffbca68e93db55a302d9a8da8d25a29c65ebfecb743046bf05e04eeefea139

  • SHA512

    d1fdcd4b669e4a3f8f75623be83ef9b4f94bf63ea69a6365451dfc452aab9d891cf553b85c18964dc8acba32e5dade264cc5d96345963b1ded9b88650e4c4285

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp6bVz8eLFcz

Malware Config

Targets

    • Target

      92ccc0afbc7ad7d2c70c7375b4f04c90_NeikiAnalytics.exe

    • Size

      4.1MB

    • MD5

      92ccc0afbc7ad7d2c70c7375b4f04c90

    • SHA1

      4408c6e01094f219b37156e28c70ee245ea3b5ca

    • SHA256

      f8ffbca68e93db55a302d9a8da8d25a29c65ebfecb743046bf05e04eeefea139

    • SHA512

      d1fdcd4b669e4a3f8f75623be83ef9b4f94bf63ea69a6365451dfc452aab9d891cf553b85c18964dc8acba32e5dade264cc5d96345963b1ded9b88650e4c4285

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp6bVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks