Overview

overview

7

Static

static

3

9fcc207e2d...cs.exe

windows7-x64

7

9fcc207e2d...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9fcc207e2d7cb7faff4548ea548c1980_NeikiAnalytics.exe

  • Size

    3.2MB

  • Sample

    240603-h1a89sfg3z

  • MD5

    9fcc207e2d7cb7faff4548ea548c1980

  • SHA1

    b13b2814a6f1f2c6aa76bd28a901756ac3ec07b9

  • SHA256

    045a162501e3d6327767649b9b1cd8f52518213576dcd7a80f93799f1c4b9c7e

  • SHA512

    3eec582db66375fdfc9d756a2eb0569aef388a3975ff5a4923ab0845d481a628c18cc3d2fcb46fe80f2f43f2adc8eb6193501b1fa458ab70c392b5d96720b19e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBJB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpqbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      9fcc207e2d7cb7faff4548ea548c1980_NeikiAnalytics.exe

    • Size

      3.2MB

    • MD5

      9fcc207e2d7cb7faff4548ea548c1980

    • SHA1

      b13b2814a6f1f2c6aa76bd28a901756ac3ec07b9

    • SHA256

      045a162501e3d6327767649b9b1cd8f52518213576dcd7a80f93799f1c4b9c7e

    • SHA512

      3eec582db66375fdfc9d756a2eb0569aef388a3975ff5a4923ab0845d481a628c18cc3d2fcb46fe80f2f43f2adc8eb6193501b1fa458ab70c392b5d96720b19e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBJB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpqbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks