General

  • Target

    3a3eccdc1f4f25de7218f4e382645280_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240612-pk26davbrc

  • MD5

    3a3eccdc1f4f25de7218f4e382645280

  • SHA1

    355506b83d1ebac3207148556bb69ca5e3c5c0ea

  • SHA256

    49c68996450bda55e68e4e4bf33cb6914079b719f415a8e8d5675ef0052e748e

  • SHA512

    c2ad349535f4316b1297c3ada28edd82ce916ecd223bf8626de4889a539020f60c2964f15dca193514c5f962f3c0b246dbdd16e0f9bf0d9d16cb3efcd03da398

  • SSDEEP

    1536:t3x85+Ks2iwjB+1E/R6apmIguczNzEUFEsg4yx9HXN87ks4tuJsTaaCaG:th85+Ksu/zQBPgx987ks4tgsTSL

Malware Config

Targets

    • Target

      3a3eccdc1f4f25de7218f4e382645280_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      3a3eccdc1f4f25de7218f4e382645280

    • SHA1

      355506b83d1ebac3207148556bb69ca5e3c5c0ea

    • SHA256

      49c68996450bda55e68e4e4bf33cb6914079b719f415a8e8d5675ef0052e748e

    • SHA512

      c2ad349535f4316b1297c3ada28edd82ce916ecd223bf8626de4889a539020f60c2964f15dca193514c5f962f3c0b246dbdd16e0f9bf0d9d16cb3efcd03da398

    • SSDEEP

      1536:t3x85+Ks2iwjB+1E/R6apmIguczNzEUFEsg4yx9HXN87ks4tuJsTaaCaG:th85+Ksu/zQBPgx987ks4tgsTSL

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks