General

  • Target

    9e219efc851548dacefa1027d050b730_NeikiAnalytics.exe

  • Size

    3.9MB

  • Sample

    240603-gv76dafd48

  • MD5

    9e219efc851548dacefa1027d050b730

  • SHA1

    c1e4e450edbf4e80f081d5b4e434863bdc7431af

  • SHA256

    1bbd510766ee047d45e01ffefeb8e532d951ea8d5d5b7c45ca1c62098be3942d

  • SHA512

    d1f57674ad604aa068bab57f2f30b987a468b9af24daaa0869fd129949749142588ffbbe18087c49d25b51438fb75c16c6548be9bd3f82f91ec37d17bce7c33d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqz8:sxX7QnxrloE5dpUpebVz8

Malware Config

Targets

    • Target

      9e219efc851548dacefa1027d050b730_NeikiAnalytics.exe

    • Size

      3.9MB

    • MD5

      9e219efc851548dacefa1027d050b730

    • SHA1

      c1e4e450edbf4e80f081d5b4e434863bdc7431af

    • SHA256

      1bbd510766ee047d45e01ffefeb8e532d951ea8d5d5b7c45ca1c62098be3942d

    • SHA512

      d1f57674ad604aa068bab57f2f30b987a468b9af24daaa0869fd129949749142588ffbbe18087c49d25b51438fb75c16c6548be9bd3f82f91ec37d17bce7c33d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqz8:sxX7QnxrloE5dpUpebVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks