Overview

overview

7

Static

static

3

1f781ac1ad...cs.exe

windows7-x64

7

1f781ac1ad...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1f781ac1ad56d9bb64ea529d4bb34ff0_NeikiAnalytics.exe

  • Size

    3.1MB

  • Sample

    240610-3pgbcsvgmh

  • MD5

    1f781ac1ad56d9bb64ea529d4bb34ff0

  • SHA1

    4c231714ea6c42004900f5776c5b65de77983c05

  • SHA256

    78286976b78ee9796bd76d71ac8ffd7ffaf4d57870bf4d8d733f6b4cf892337c

  • SHA512

    375f30e0b210a48d5f76baaf2ed9c2bf514d976521da3dc902331cc07603254eacb8218f8cca184b11b2faa7ad67ee5e9a6a04890f80c748795baaf37b816125

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpwbVz8eLFc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      1f781ac1ad56d9bb64ea529d4bb34ff0_NeikiAnalytics.exe

    • Size

      3.1MB

    • MD5

      1f781ac1ad56d9bb64ea529d4bb34ff0

    • SHA1

      4c231714ea6c42004900f5776c5b65de77983c05

    • SHA256

      78286976b78ee9796bd76d71ac8ffd7ffaf4d57870bf4d8d733f6b4cf892337c

    • SHA512

      375f30e0b210a48d5f76baaf2ed9c2bf514d976521da3dc902331cc07603254eacb8218f8cca184b11b2faa7ad67ee5e9a6a04890f80c748795baaf37b816125

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpwbVz8eLFc

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks