General

  • Target

    9f1762f44af994828c6290ce8ed33520_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240603-hgcyrafa91

  • MD5

    9f1762f44af994828c6290ce8ed33520

  • SHA1

    c325138e22e44de7d19e206e553afde60f3e466c

  • SHA256

    555cf9c250546debf512f3f631c6240c74444c521bcf978492560ebe1a56c7da

  • SHA512

    411b7de70ece2fc25b2907b3bfddde5e52ee0d649b01fc34d229f70de26370d40ffb4f3e1e91f27f8e42c465b5936e88a452e54d15ccd8f42cd41e4d186d590d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bSqz8:sxX7QnxrloE5dpUp/bVz8

Malware Config

Targets

    • Target

      9f1762f44af994828c6290ce8ed33520_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      9f1762f44af994828c6290ce8ed33520

    • SHA1

      c325138e22e44de7d19e206e553afde60f3e466c

    • SHA256

      555cf9c250546debf512f3f631c6240c74444c521bcf978492560ebe1a56c7da

    • SHA512

      411b7de70ece2fc25b2907b3bfddde5e52ee0d649b01fc34d229f70de26370d40ffb4f3e1e91f27f8e42c465b5936e88a452e54d15ccd8f42cd41e4d186d590d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bSqz8:sxX7QnxrloE5dpUp/bVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks