Overview

overview

7

Static

static

3

7ba34eaf22...cs.exe

windows7-x64

7

7ba34eaf22...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    7ba34eaf22bb602f9feafe547e8dbce0_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240608-atwydsfd92

  • MD5

    7ba34eaf22bb602f9feafe547e8dbce0

  • SHA1

    cd2a1f550aaf0756a571d553c3a801ee25680fae

  • SHA256

    d8b45ff0d18557e1ed88938a5aadf75174111fb6b4b533c4d2b3f61de48e601a

  • SHA512

    36d14a773fee290a9232c6acc8739c1e44951d3b7e3108df457d497baf112571e3e1067dff1e372d1d6a7fc53e56b0d4a11fa4ffd892712a6f547a86db8fc83a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8b6LNX:sxX7QnxrloE5dpUpxbVz8eLF

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      7ba34eaf22bb602f9feafe547e8dbce0_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      7ba34eaf22bb602f9feafe547e8dbce0

    • SHA1

      cd2a1f550aaf0756a571d553c3a801ee25680fae

    • SHA256

      d8b45ff0d18557e1ed88938a5aadf75174111fb6b4b533c4d2b3f61de48e601a

    • SHA512

      36d14a773fee290a9232c6acc8739c1e44951d3b7e3108df457d497baf112571e3e1067dff1e372d1d6a7fc53e56b0d4a11fa4ffd892712a6f547a86db8fc83a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8b6LNX:sxX7QnxrloE5dpUpxbVz8eLF

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks