Overview

overview

7

Static

static

3

2925f26d02...cs.exe

windows7-x64

7

2925f26d02...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2925f26d02f356876e8b9d57aff18080_NeikiAnalytics.exe

  • Size

    3.2MB

  • Sample

    240611-f5ca1swhjj

  • MD5

    2925f26d02f356876e8b9d57aff18080

  • SHA1

    281743994296f416fbb08190468e697b842ddb0a

  • SHA256

    c8313fb5032c29149cad47613df688e852443c43ecc0973970a730b75320ead2

  • SHA512

    2b0e49677bcd486f231225b42628883aa3a6b9b49383bf6af82c140f60d6047749fc9715aa24715dd8d0c5224cde4869de92e8d362ccd3c5c8943c2a52694ddb

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpMbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2925f26d02f356876e8b9d57aff18080_NeikiAnalytics.exe

    • Size

      3.2MB

    • MD5

      2925f26d02f356876e8b9d57aff18080

    • SHA1

      281743994296f416fbb08190468e697b842ddb0a

    • SHA256

      c8313fb5032c29149cad47613df688e852443c43ecc0973970a730b75320ead2

    • SHA512

      2b0e49677bcd486f231225b42628883aa3a6b9b49383bf6af82c140f60d6047749fc9715aa24715dd8d0c5224cde4869de92e8d362ccd3c5c8943c2a52694ddb

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpMbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks