Overview

overview

7

Static

static

3

50342db857...cs.exe

windows7-x64

7

50342db857...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    50342db857b2e6e116bdc43b1ab7ca70_NeikiAnalytics.exe

  • Size

    3.9MB

  • Sample

    240602-h55cxaeg2x

  • MD5

    50342db857b2e6e116bdc43b1ab7ca70

  • SHA1

    4d94f64216843acb0515649dde1816c653c5b63a

  • SHA256

    34e7fc34badac62465baa145a89a0a449331c385b5962401a62be9e8ad7b1196

  • SHA512

    c90d85d5b85d1a79b52e7dcf187e752427efe03afb9ddb892946580d27416a4b91409069ca5d4d851ae497134b02d1c5d108a3aac0e1e8a0c62e2ab5815822ef

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bSqz8:sxX7QnxrloE5dpUpObVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      50342db857b2e6e116bdc43b1ab7ca70_NeikiAnalytics.exe

    • Size

      3.9MB

    • MD5

      50342db857b2e6e116bdc43b1ab7ca70

    • SHA1

      4d94f64216843acb0515649dde1816c653c5b63a

    • SHA256

      34e7fc34badac62465baa145a89a0a449331c385b5962401a62be9e8ad7b1196

    • SHA512

      c90d85d5b85d1a79b52e7dcf187e752427efe03afb9ddb892946580d27416a4b91409069ca5d4d851ae497134b02d1c5d108a3aac0e1e8a0c62e2ab5815822ef

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bSqz8:sxX7QnxrloE5dpUpObVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks