General

  • Target

    5c8697b1ced337469351606365af65f0_NeikiAnalytics.exe

  • Size

    32KB

  • Sample

    240613-eh7b7sxckm

  • MD5

    5c8697b1ced337469351606365af65f0

  • SHA1

    56cb189c01e22bc64ce461e3a769212d83939dd2

  • SHA256

    550b1f2945443724adabc4ec789ea21f5647f3e13c3e3f9b397e7f584b49f053

  • SHA512

    d3018462a122151d0204b041efaa5d8538e3a2f3499f48efed0c84c2875fcb39f5037df3304bb95caa2c9416e0f1e7e414268908a907620e4dc0095aecd718d1

  • SSDEEP

    768:X9J/3FzjgfanEGx8V36unjv88tznuRU65Y4gpph1ePVCMkwF8OrXYV:N5VzcfA/6LrVpL74gfh16nkncQ

Malware Config

Targets

    • Target

      5c8697b1ced337469351606365af65f0_NeikiAnalytics.exe

    • Size

      32KB

    • MD5

      5c8697b1ced337469351606365af65f0

    • SHA1

      56cb189c01e22bc64ce461e3a769212d83939dd2

    • SHA256

      550b1f2945443724adabc4ec789ea21f5647f3e13c3e3f9b397e7f584b49f053

    • SHA512

      d3018462a122151d0204b041efaa5d8538e3a2f3499f48efed0c84c2875fcb39f5037df3304bb95caa2c9416e0f1e7e414268908a907620e4dc0095aecd718d1

    • SSDEEP

      768:X9J/3FzjgfanEGx8V36unjv88tznuRU65Y4gpph1ePVCMkwF8OrXYV:N5VzcfA/6LrVpL74gfh16nkncQ

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks