General

  • Target

    175f6a26f17d5beb91bd377b2004ea60_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240602-a9lgladb2x

  • MD5

    175f6a26f17d5beb91bd377b2004ea60

  • SHA1

    72fb0fcde727f782e216dc61d1da49177eca4966

  • SHA256

    d0fb750cc01d33a27f38bfa1a7342dc2be6267f02696fe08139be1703a7132c8

  • SHA512

    0ed477c881bb2f34d6b4cf69f4a29752889f9d55a9eb7de6f976b1f96ef82220e4b89f911dded40f1333aadfb2c42b6ab1f8ce73bf1c856c5d4db6a5accacb3a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bSqz8b6LNX:sxX7QnxrloE5dpUpWbVz8eLF

Malware Config

Targets

    • Target

      175f6a26f17d5beb91bd377b2004ea60_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      175f6a26f17d5beb91bd377b2004ea60

    • SHA1

      72fb0fcde727f782e216dc61d1da49177eca4966

    • SHA256

      d0fb750cc01d33a27f38bfa1a7342dc2be6267f02696fe08139be1703a7132c8

    • SHA512

      0ed477c881bb2f34d6b4cf69f4a29752889f9d55a9eb7de6f976b1f96ef82220e4b89f911dded40f1333aadfb2c42b6ab1f8ce73bf1c856c5d4db6a5accacb3a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bSqz8b6LNX:sxX7QnxrloE5dpUpWbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks