General

  • Target

    6253d0cbca1c76cbfbfd859f4facdbc0_NeikiAnalytics.exe

  • Size

    4.0MB

  • Sample

    240613-f8lzmazclq

  • MD5

    6253d0cbca1c76cbfbfd859f4facdbc0

  • SHA1

    ab1f3d98c46ff989c78b56a95480d486fdeafacc

  • SHA256

    6535faddfcbc48e4c9dd5b3f46f87d99db166beff30029fc65056356fc3a861e

  • SHA512

    4bb82f501bd3b319e2dec6a0e4138467e7376d17932d4bd9e2a38746d7dc4b7458944ada2a36aa4899b5f32bd50dbff580cba3958d74c7ac2eec84b8f98598c3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpRbVz8eLFcz

Malware Config

Targets

    • Target

      6253d0cbca1c76cbfbfd859f4facdbc0_NeikiAnalytics.exe

    • Size

      4.0MB

    • MD5

      6253d0cbca1c76cbfbfd859f4facdbc0

    • SHA1

      ab1f3d98c46ff989c78b56a95480d486fdeafacc

    • SHA256

      6535faddfcbc48e4c9dd5b3f46f87d99db166beff30029fc65056356fc3a861e

    • SHA512

      4bb82f501bd3b319e2dec6a0e4138467e7376d17932d4bd9e2a38746d7dc4b7458944ada2a36aa4899b5f32bd50dbff580cba3958d74c7ac2eec84b8f98598c3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpRbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks