cf8d95b56ff0145ad0349ca4584c13222d12b3a9d46cce3f1a9a4be7a64bebc1 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

506bf63e54...cs.exe

windows7-x64

7

506bf63e54...cs.exe

windows10-2004-x64

7

Sharing

General

Target

506bf63e542b5a1783ac62a245f76f30_NeikiAnalytics.exe
Size

1.5MB
Sample

240613-av7raa1ckp
MD5

506bf63e542b5a1783ac62a245f76f30
SHA1

b5f5e09f25389b238bf91d55f0c77dcc7d9e8ce2
SHA256

cf8d95b56ff0145ad0349ca4584c13222d12b3a9d46cce3f1a9a4be7a64bebc1
SHA512

cbaa7a7adb6deaa5a9eca7acfbc639ac108bbe35ba379e804e7d351a76ce5bc00e53b46159216c14a62b3231032cae0ae3a5591c046e207775c496fe4013d8bc
SSDEEP

12288:YgTNjYGgpK/vnRsmH5Ckt73qfKrrzD89f24pWYbCXGah2JoHq1MGJlyw9hditWsS:HTNjx+mZCkt76f/24pN+XNqNG6hditW

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

506bf63e542b5a1783ac62a245f76f30_NeikiAnalytics.exe

Resource

win7-20240220-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

506bf63e542b5a1783ac62a245f76f30_NeikiAnalytics.exe

Resource

win10v2004-20240611-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  506bf63e542b5a1783ac62a245f76f30_NeikiAnalytics.exe
- Size
  
  1.5MB
- MD5
  
  506bf63e542b5a1783ac62a245f76f30
- SHA1
  
  b5f5e09f25389b238bf91d55f0c77dcc7d9e8ce2
- SHA256
  
  cf8d95b56ff0145ad0349ca4584c13222d12b3a9d46cce3f1a9a4be7a64bebc1
- SHA512
  
  cbaa7a7adb6deaa5a9eca7acfbc639ac108bbe35ba379e804e7d351a76ce5bc00e53b46159216c14a62b3231032cae0ae3a5591c046e207775c496fe4013d8bc
- SSDEEP
  
  12288:YgTNjYGgpK/vnRsmH5Ckt73qfKrrzD89f24pWYbCXGah2JoHq1MGJlyw9hditWsS:HTNjx+mZCkt76f/24pN+XNqNG6hditW
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy