General

  • Target

    a03b7257f1c692261f357715257f5480_NeikiAnalytics.exe

  • Size

    3.0MB

  • Sample

    240614-egb5nsyanj

  • MD5

    a03b7257f1c692261f357715257f5480

  • SHA1

    d7eca935dbcd576b5d50af28a8ad559263313baa

  • SHA256

    ae6554f766d103e03aaa6e30129d2eca05e0f4598e908f9676137c162e03330f

  • SHA512

    084f24e6e7b3bdd31721740261875888cd32c7c644993d928985aab83bceeb6204291022b3d37d8bf12abb54c46b31851025766c616305b07067a8c98e9d3630

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bSqz8:sxX7QnxrloE5dpUp/bVz8

Malware Config

Targets

    • Target

      a03b7257f1c692261f357715257f5480_NeikiAnalytics.exe

    • Size

      3.0MB

    • MD5

      a03b7257f1c692261f357715257f5480

    • SHA1

      d7eca935dbcd576b5d50af28a8ad559263313baa

    • SHA256

      ae6554f766d103e03aaa6e30129d2eca05e0f4598e908f9676137c162e03330f

    • SHA512

      084f24e6e7b3bdd31721740261875888cd32c7c644993d928985aab83bceeb6204291022b3d37d8bf12abb54c46b31851025766c616305b07067a8c98e9d3630

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bSqz8:sxX7QnxrloE5dpUp/bVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks