General

  • Target

    18785c60d6555a8d46986489583dddd0_NeikiAnalytics.exe

  • Size

    3.1MB

  • Sample

    240602-bdfrxadc7s

  • MD5

    18785c60d6555a8d46986489583dddd0

  • SHA1

    3ed3dd92a228a644f44c3c79da4b8a1b34d603c8

  • SHA256

    47c2bca5b4fd54c451c54e1a62e821bf19745ff519a3cc14393af7e9189f6232

  • SHA512

    4aa5a78c6afa558b78f6f5e5844d6d7886c42004c74d56e4e4e1743c01234cb8f830ace30525011dbab465c853626639cdeb2458f2fa871a7fa738a154e99181

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bSqz8:sxX7QnxrloE5dpUpUbVz8

Malware Config

Targets

    • Target

      18785c60d6555a8d46986489583dddd0_NeikiAnalytics.exe

    • Size

      3.1MB

    • MD5

      18785c60d6555a8d46986489583dddd0

    • SHA1

      3ed3dd92a228a644f44c3c79da4b8a1b34d603c8

    • SHA256

      47c2bca5b4fd54c451c54e1a62e821bf19745ff519a3cc14393af7e9189f6232

    • SHA512

      4aa5a78c6afa558b78f6f5e5844d6d7886c42004c74d56e4e4e1743c01234cb8f830ace30525011dbab465c853626639cdeb2458f2fa871a7fa738a154e99181

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bSqz8:sxX7QnxrloE5dpUpUbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks