Overview

overview

7

Static

static

3

0e3167f94e...cs.exe

windows7-x64

7

0e3167f94e...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0e3167f94e75e91a411fc3dc3bbcaf80_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240611-3vls2awdpg

  • MD5

    0e3167f94e75e91a411fc3dc3bbcaf80

  • SHA1

    5211b129642a3864a346eeff4b45220824dd01ea

  • SHA256

    a90e681347d0c97cd3b88c024d24bb30e3dee0c69cb0dbb62e802c11eeab3cf7

  • SHA512

    22c10f1c2d880e48db9ce88f0b53ce297af8bf495d966f102dc194f2ac88c5e57c4739c473c92acd773aa8efce4b54de0287bf282ad9a141b667882b3852ab4e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bSqz8:sxX7QnxrloE5dpUpbbVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      0e3167f94e75e91a411fc3dc3bbcaf80_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      0e3167f94e75e91a411fc3dc3bbcaf80

    • SHA1

      5211b129642a3864a346eeff4b45220824dd01ea

    • SHA256

      a90e681347d0c97cd3b88c024d24bb30e3dee0c69cb0dbb62e802c11eeab3cf7

    • SHA512

      22c10f1c2d880e48db9ce88f0b53ce297af8bf495d966f102dc194f2ac88c5e57c4739c473c92acd773aa8efce4b54de0287bf282ad9a141b667882b3852ab4e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bSqz8:sxX7QnxrloE5dpUpbbVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks