General

  • Target

    9f9d82a1effba309f2f9947d7b9613f0_NeikiAnalytics.exe

  • Size

    3.6MB

  • Sample

    240614-eastvaxgrp

  • MD5

    9f9d82a1effba309f2f9947d7b9613f0

  • SHA1

    1afeed90df8dcb4fd3fa8b05f127685001de6a5b

  • SHA256

    485f222bd8db5cd9a2294021454d688ef708d4c0c1efba5f80d322ff888e00a2

  • SHA512

    05205511883d0419fe5c4aa5a752acaf22777f50244db7e40281be193e6d58779722366eed419e977fc5175a30650342e24ebcce8dcbd0851cc8060b1d842aac

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpwbVz8eLFcz

Malware Config

Targets

    • Target

      9f9d82a1effba309f2f9947d7b9613f0_NeikiAnalytics.exe

    • Size

      3.6MB

    • MD5

      9f9d82a1effba309f2f9947d7b9613f0

    • SHA1

      1afeed90df8dcb4fd3fa8b05f127685001de6a5b

    • SHA256

      485f222bd8db5cd9a2294021454d688ef708d4c0c1efba5f80d322ff888e00a2

    • SHA512

      05205511883d0419fe5c4aa5a752acaf22777f50244db7e40281be193e6d58779722366eed419e977fc5175a30650342e24ebcce8dcbd0851cc8060b1d842aac

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpwbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks