General

  • Target

    3a3e57d7b7a673ad7b95e11f413d27a0_NeikiAnalytics.exe

  • Size

    3.9MB

  • Sample

    240602-fg198sbf61

  • MD5

    3a3e57d7b7a673ad7b95e11f413d27a0

  • SHA1

    3806f5130fb704b858547b05e450f648676d1b54

  • SHA256

    4bf4ae882f76de9cc3eccd001526bb0435e0e8fcfa0c67ea89fc70cd5ebda5d7

  • SHA512

    04aa9834cd6b5527c61af2a851a913f6b5fa49750a90814ef1c1b84cb1b526e633585fef8bb6d5a98ba8a516d8a1b1110537f5c35defb8b6211a9bc1fab3633a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpUbVz8eLFcz

Malware Config

Targets

    • Target

      3a3e57d7b7a673ad7b95e11f413d27a0_NeikiAnalytics.exe

    • Size

      3.9MB

    • MD5

      3a3e57d7b7a673ad7b95e11f413d27a0

    • SHA1

      3806f5130fb704b858547b05e450f648676d1b54

    • SHA256

      4bf4ae882f76de9cc3eccd001526bb0435e0e8fcfa0c67ea89fc70cd5ebda5d7

    • SHA512

      04aa9834cd6b5527c61af2a851a913f6b5fa49750a90814ef1c1b84cb1b526e633585fef8bb6d5a98ba8a516d8a1b1110537f5c35defb8b6211a9bc1fab3633a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpUbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks