Overview

overview

7

Static

static

3

044da423d6...cs.exe

windows7-x64

7

044da423d6...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    044da423d619b5440b59eb43bff2cef0_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240609-3gc9qsha45

  • MD5

    044da423d619b5440b59eb43bff2cef0

  • SHA1

    7f74483973a0cea084111814b7fb40a03fc6b6bd

  • SHA256

    e0e2b21fada51f7e500b5ac7038e8954f9dc8f4edcb9070dd43af2fee6c6254a

  • SHA512

    f4c79741f0dd8ccc6dd64bac7d1d1642ef0ef692a6e6ae5fdaa7a31da55dc56a70c5702c5bf5d045ae8f66735bf5417da324e11fd487eecba71e31572f29b87f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpHbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      044da423d619b5440b59eb43bff2cef0_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      044da423d619b5440b59eb43bff2cef0

    • SHA1

      7f74483973a0cea084111814b7fb40a03fc6b6bd

    • SHA256

      e0e2b21fada51f7e500b5ac7038e8954f9dc8f4edcb9070dd43af2fee6c6254a

    • SHA512

      f4c79741f0dd8ccc6dd64bac7d1d1642ef0ef692a6e6ae5fdaa7a31da55dc56a70c5702c5bf5d045ae8f66735bf5417da324e11fd487eecba71e31572f29b87f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpHbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks