General

  • Target

    624002f183a1ecc2a19fb2a9e53e8a30_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240613-f68evawbkh

  • MD5

    624002f183a1ecc2a19fb2a9e53e8a30

  • SHA1

    caf05969f44c5b205f1930eeb587855b0bd89004

  • SHA256

    82b1f1d0604e41e8d91dfcbfcb6e1369f8db744e30965909725e0bf3e0dd860f

  • SHA512

    55634343938e58dedf87e5a14dd35af129eba8b5267c3ab64dad62e1f9bc4c823e77cab5fa8b9688b16303bd5d5a98e2d61713b078305c3e0f519ae1ab83157c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqz8b6LNX:sxX7QnxrloE5dpUpjbVz8eLF

Malware Config

Targets

    • Target

      624002f183a1ecc2a19fb2a9e53e8a30_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      624002f183a1ecc2a19fb2a9e53e8a30

    • SHA1

      caf05969f44c5b205f1930eeb587855b0bd89004

    • SHA256

      82b1f1d0604e41e8d91dfcbfcb6e1369f8db744e30965909725e0bf3e0dd860f

    • SHA512

      55634343938e58dedf87e5a14dd35af129eba8b5267c3ab64dad62e1f9bc4c823e77cab5fa8b9688b16303bd5d5a98e2d61713b078305c3e0f519ae1ab83157c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqz8b6LNX:sxX7QnxrloE5dpUpjbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks