General

  • Target

    9b5ded4287c5c3872386297e9a2a1420_NeikiAnalytics.exe

  • Size

    3.1MB

  • Sample

    240614-cz3z1awcjn

  • MD5

    9b5ded4287c5c3872386297e9a2a1420

  • SHA1

    1a6924adc275cac1e50417d6d3b876b29e2fc866

  • SHA256

    bd869aedb7e9de4461effd656c188a7dc4798fa614defba50ccc789d5608127c

  • SHA512

    2c186d4b5d706772be8bbc98fe4c70114e35d6958ceff6cb1917ddb2824d44672ef00bb793300e07c37299f1e5c7ac7bfba1057dcbadabb1ac133517623e5f4f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB9B/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpqbVz8eLFc

Malware Config

Targets

    • Target

      9b5ded4287c5c3872386297e9a2a1420_NeikiAnalytics.exe

    • Size

      3.1MB

    • MD5

      9b5ded4287c5c3872386297e9a2a1420

    • SHA1

      1a6924adc275cac1e50417d6d3b876b29e2fc866

    • SHA256

      bd869aedb7e9de4461effd656c188a7dc4798fa614defba50ccc789d5608127c

    • SHA512

      2c186d4b5d706772be8bbc98fe4c70114e35d6958ceff6cb1917ddb2824d44672ef00bb793300e07c37299f1e5c7ac7bfba1057dcbadabb1ac133517623e5f4f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB9B/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpqbVz8eLFc

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks