Overview

overview

7

Static

static

3

fe0671204c...cs.exe

windows7-x64

7

fe0671204c...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fe0671204c9ed432322b4fec02ecd1d0_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240603-tqqrradc34

  • MD5

    fe0671204c9ed432322b4fec02ecd1d0

  • SHA1

    424c846d17d4bacbe303e99bc35eb8cfb715be34

  • SHA256

    a7d5c67b4394e0a303e8741e27cfb10f07e5428aac862fd313083ade8eafafce

  • SHA512

    9782c6ef016f51bbe9fd375679745b143c4a867879db019ad305fb48a2d14381908aef08e68ba74d964be03e83c8ad19c40222db78a07910e6cae3893438d6fe

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpTbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      fe0671204c9ed432322b4fec02ecd1d0_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      fe0671204c9ed432322b4fec02ecd1d0

    • SHA1

      424c846d17d4bacbe303e99bc35eb8cfb715be34

    • SHA256

      a7d5c67b4394e0a303e8741e27cfb10f07e5428aac862fd313083ade8eafafce

    • SHA512

      9782c6ef016f51bbe9fd375679745b143c4a867879db019ad305fb48a2d14381908aef08e68ba74d964be03e83c8ad19c40222db78a07910e6cae3893438d6fe

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpTbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks