Overview

overview

7

Static

static

3

1d187aeb81...cs.exe

windows7-x64

7

1d187aeb81...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1d187aeb81ce2fd93df28663ab36b7d0_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240602-byx7paeh96

  • MD5

    1d187aeb81ce2fd93df28663ab36b7d0

  • SHA1

    59c223cc77f97d37f98e56cf641b1738dedfefd1

  • SHA256

    46dd076aec1b3d1ce279c406841da457c60b120f93f764d59c4845c994ef2661

  • SHA512

    0bf69503bd3c35901ef685cecde8db55d68d84de206563fa0999856d7e0f11bdd213b582279dedf31b6cdb26057b3d2553f4124832cfd1475924b5fbac462069

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8:sxX7QnxrloE5dpUpmbVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      1d187aeb81ce2fd93df28663ab36b7d0_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      1d187aeb81ce2fd93df28663ab36b7d0

    • SHA1

      59c223cc77f97d37f98e56cf641b1738dedfefd1

    • SHA256

      46dd076aec1b3d1ce279c406841da457c60b120f93f764d59c4845c994ef2661

    • SHA512

      0bf69503bd3c35901ef685cecde8db55d68d84de206563fa0999856d7e0f11bdd213b582279dedf31b6cdb26057b3d2553f4124832cfd1475924b5fbac462069

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8:sxX7QnxrloE5dpUpmbVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks