General

  • Target

    6d178cfe9f6c8355698c5b2174f6d370_NeikiAnalytics.exe

  • Size

    87KB

  • Sample

    240607-t6slaabb7y

  • MD5

    6d178cfe9f6c8355698c5b2174f6d370

  • SHA1

    661540c86c7fd04e91f439608e653f7e433f669b

  • SHA256

    5e9ae3360abeb87097eb56269bc32f1237631f913b8ed0a17a20727d96712ed0

  • SHA512

    f73b1dcc19461f83cdfa22e8492aced19dbebe2720cd03258780824e26a1fb8840375251b65c37f0bc605121e9ed892991f0d18e04cbbb8b6a6203ce69831d38

  • SSDEEP

    1536:N5VzcfA/6LrVpL74gfh16ngX//7HZAbns11kXm/JPYUbCxAw9ySKPIOidq+GfP8v:/V2A/gVh74gpggXbHmC8QLUHySzvor2

Malware Config

Targets

    • Target

      6d178cfe9f6c8355698c5b2174f6d370_NeikiAnalytics.exe

    • Size

      87KB

    • MD5

      6d178cfe9f6c8355698c5b2174f6d370

    • SHA1

      661540c86c7fd04e91f439608e653f7e433f669b

    • SHA256

      5e9ae3360abeb87097eb56269bc32f1237631f913b8ed0a17a20727d96712ed0

    • SHA512

      f73b1dcc19461f83cdfa22e8492aced19dbebe2720cd03258780824e26a1fb8840375251b65c37f0bc605121e9ed892991f0d18e04cbbb8b6a6203ce69831d38

    • SSDEEP

      1536:N5VzcfA/6LrVpL74gfh16ngX//7HZAbns11kXm/JPYUbCxAw9ySKPIOidq+GfP8v:/V2A/gVh74gpggXbHmC8QLUHySzvor2

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks