Overview

overview

7

Static

static

3

bed12dba70...cs.exe

windows7-x64

7

bed12dba70...cs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bed12dba702b2d4a893afc833a3d2120_NeikiAnalytics.exe

  • Size

    2.0MB

  • Sample

    240608-ryv1bsce5s

  • MD5

    bed12dba702b2d4a893afc833a3d2120

  • SHA1

    6e4bb0b8f42170a8e00a94d96e9f44361c9bfa14

  • SHA256

    e435ce077b5c419cc2f7406820c39d3ac3bc639b2874afc4a829e71cd0434509

  • SHA512

    eaffbf068981d98eca959e4972360c6dc32b8a1b2f08566839169cab67dc3521f624293f942923c46336e443cc25879f4b858d6eb2d12a19c66200ff0324d082

  • SSDEEP

    49152:Gl20i8Ewu1R1v0njTDQRyGw0Z8j2XotK92:50R4p0nfDQQ2XN

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      bed12dba702b2d4a893afc833a3d2120_NeikiAnalytics.exe

    • Size

      2.0MB

    • MD5

      bed12dba702b2d4a893afc833a3d2120

    • SHA1

      6e4bb0b8f42170a8e00a94d96e9f44361c9bfa14

    • SHA256

      e435ce077b5c419cc2f7406820c39d3ac3bc639b2874afc4a829e71cd0434509

    • SHA512

      eaffbf068981d98eca959e4972360c6dc32b8a1b2f08566839169cab67dc3521f624293f942923c46336e443cc25879f4b858d6eb2d12a19c66200ff0324d082

    • SSDEEP

      49152:Gl20i8Ewu1R1v0njTDQRyGw0Z8j2XotK92:50R4p0nfDQQ2XN

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks