General

  • Target

    a93f90b619b99b10add7d5c45b0db430_NeikiAnalytics.exe

  • Size

    3.2MB

  • Sample

    240614-g7xkeasclr

  • MD5

    a93f90b619b99b10add7d5c45b0db430

  • SHA1

    9835a0307c86a5ecd4dde023b641e279fd25f6af

  • SHA256

    14245e5a193ed4ee73d4a1ba63d27dc9b1a13dc10815c5b15e15da8abb37394a

  • SHA512

    4666b6e10e191701f0aa9ae4080ed781f1bf3d075e844d9c3b61e2925c9508e9e42067fbe2808ca219594c3273c2e361e2be2f3002400e65c98593c37031f272

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bSqz:sxX7QnxrloE5dpUprbVz

Malware Config

Targets

    • Target

      a93f90b619b99b10add7d5c45b0db430_NeikiAnalytics.exe

    • Size

      3.2MB

    • MD5

      a93f90b619b99b10add7d5c45b0db430

    • SHA1

      9835a0307c86a5ecd4dde023b641e279fd25f6af

    • SHA256

      14245e5a193ed4ee73d4a1ba63d27dc9b1a13dc10815c5b15e15da8abb37394a

    • SHA512

      4666b6e10e191701f0aa9ae4080ed781f1bf3d075e844d9c3b61e2925c9508e9e42067fbe2808ca219594c3273c2e361e2be2f3002400e65c98593c37031f272

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bSqz:sxX7QnxrloE5dpUprbVz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks