General

  • Target

    3a73e075dcfa4b6fea5a93d10b6ea480_NeikiAnalytics.exe

  • Size

    2.6MB

  • Sample

    240602-fjgcvacc79

  • MD5

    3a73e075dcfa4b6fea5a93d10b6ea480

  • SHA1

    1c9e55a0e104e97101af075240cb97df936b63da

  • SHA256

    c4729c696d57c3d44225e328c83f4c56b75dd2fcb8318af4e8894c08d963284e

  • SHA512

    e26a67a406bfb6db1f113590c1af05388d6df05b80329a06e2405e7759e8b60ba2fdd0af0382e48c54c973ac6f7955b07c900827364dc4b5313910b2ab82825b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBHB/bS:sxX7QnxrloE5dpUpEb

Malware Config

Targets

    • Target

      3a73e075dcfa4b6fea5a93d10b6ea480_NeikiAnalytics.exe

    • Size

      2.6MB

    • MD5

      3a73e075dcfa4b6fea5a93d10b6ea480

    • SHA1

      1c9e55a0e104e97101af075240cb97df936b63da

    • SHA256

      c4729c696d57c3d44225e328c83f4c56b75dd2fcb8318af4e8894c08d963284e

    • SHA512

      e26a67a406bfb6db1f113590c1af05388d6df05b80329a06e2405e7759e8b60ba2fdd0af0382e48c54c973ac6f7955b07c900827364dc4b5313910b2ab82825b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBHB/bS:sxX7QnxrloE5dpUpEb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks