General

  • Target

    3fc1c33983231a85fc3007f196ada650_NeikiAnalytics.exe

  • Size

    4.0MB

  • Sample

    240608-qyahysca8x

  • MD5

    3fc1c33983231a85fc3007f196ada650

  • SHA1

    c61c150a30a71524ef419e192af5cd762a066692

  • SHA256

    b486ad7f522a6f07cb1e1862f34b152b75f3dba3f74df1c11c2078dc420644e8

  • SHA512

    e42ef4ce75f21cc5d8cfc49d0575bf487f304889c91c68000c758b52585684d30dd3024a565302764a6df6ac4f9ebbdf2bce44c8ce1632fa14bdbbee7fe326e7

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpDbVz8eLFcz

Malware Config

Targets

    • Target

      3fc1c33983231a85fc3007f196ada650_NeikiAnalytics.exe

    • Size

      4.0MB

    • MD5

      3fc1c33983231a85fc3007f196ada650

    • SHA1

      c61c150a30a71524ef419e192af5cd762a066692

    • SHA256

      b486ad7f522a6f07cb1e1862f34b152b75f3dba3f74df1c11c2078dc420644e8

    • SHA512

      e42ef4ce75f21cc5d8cfc49d0575bf487f304889c91c68000c758b52585684d30dd3024a565302764a6df6ac4f9ebbdf2bce44c8ce1632fa14bdbbee7fe326e7

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpDbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks