General

  • Target

    19f0de5d9cdf9c06f04af54b1f286f90_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240602-bksp2sdf6v

  • MD5

    19f0de5d9cdf9c06f04af54b1f286f90

  • SHA1

    07c10cc0dbb3b53ef0b003acc1201fc9aea87ca3

  • SHA256

    079dfa519b7f7282faac61c684e537d1b4d1d4c98d999a711419498d2914b985

  • SHA512

    ef097675e8750263973dc55e8c4f9448d7dcdddeb96a48968cc3fbe904a3ba303b6d400fc88103bc3b1a37c76d6d3adeda3b907f1bb5fb5dc80e4e3c7dff0a99

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bSqz8b6LNX:sxX7QnxrloE5dpUpZbVz8eLF

Malware Config

Targets

    • Target

      19f0de5d9cdf9c06f04af54b1f286f90_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      19f0de5d9cdf9c06f04af54b1f286f90

    • SHA1

      07c10cc0dbb3b53ef0b003acc1201fc9aea87ca3

    • SHA256

      079dfa519b7f7282faac61c684e537d1b4d1d4c98d999a711419498d2914b985

    • SHA512

      ef097675e8750263973dc55e8c4f9448d7dcdddeb96a48968cc3fbe904a3ba303b6d400fc88103bc3b1a37c76d6d3adeda3b907f1bb5fb5dc80e4e3c7dff0a99

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bSqz8b6LNX:sxX7QnxrloE5dpUpZbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks