General

  • Target

    6455a5f3e14d0df59f01771217102d40_NeikiAnalytics.exe

  • Size

    4.1MB

  • Sample

    240613-gtbqsawhpc

  • MD5

    6455a5f3e14d0df59f01771217102d40

  • SHA1

    5278187d4cf3b9e5e3857d8542ecb13bb179e19f

  • SHA256

    707ccbfa4ebb8bcd5b701853b3ebcceca1c5c7bc705cca7e00ab49e2f85d949e

  • SHA512

    8f6f3f165b182a50158bc34a5e7b5066f2067432b1d95bf5e2965030af83f64c68a29b211321bd24cd9f2f2ca3a44d3d29b12b407fce06526ebd927b80ace0b5

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpHbVz8eLFcz

Malware Config

Targets

    • Target

      6455a5f3e14d0df59f01771217102d40_NeikiAnalytics.exe

    • Size

      4.1MB

    • MD5

      6455a5f3e14d0df59f01771217102d40

    • SHA1

      5278187d4cf3b9e5e3857d8542ecb13bb179e19f

    • SHA256

      707ccbfa4ebb8bcd5b701853b3ebcceca1c5c7bc705cca7e00ab49e2f85d949e

    • SHA512

      8f6f3f165b182a50158bc34a5e7b5066f2067432b1d95bf5e2965030af83f64c68a29b211321bd24cd9f2f2ca3a44d3d29b12b407fce06526ebd927b80ace0b5

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpHbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks