General

  • Target

    55b4d8c5f9f12ee6b3457fb9af215380_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240613-cgjteazhpe

  • MD5

    55b4d8c5f9f12ee6b3457fb9af215380

  • SHA1

    f004b7191f3cbe72c8d6bee24e184f721f932f25

  • SHA256

    aa040dfae71fe9b295bbb1a377969eaa6acb81f633af37243d9837fb753b10d9

  • SHA512

    e096c02cc06c5448a4beebb3f14e5e1540164809a12822d484867c03685f0216a185dd8309b768ffde13407c48c788924b3a9d5b1eb11dc0f528ae2fd8c53704

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bSqz8:sxX7QnxrloE5dpUplbVz8

Malware Config

Targets

    • Target

      55b4d8c5f9f12ee6b3457fb9af215380_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      55b4d8c5f9f12ee6b3457fb9af215380

    • SHA1

      f004b7191f3cbe72c8d6bee24e184f721f932f25

    • SHA256

      aa040dfae71fe9b295bbb1a377969eaa6acb81f633af37243d9837fb753b10d9

    • SHA512

      e096c02cc06c5448a4beebb3f14e5e1540164809a12822d484867c03685f0216a185dd8309b768ffde13407c48c788924b3a9d5b1eb11dc0f528ae2fd8c53704

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bSqz8:sxX7QnxrloE5dpUplbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks