Overview

overview

7

Static

static

3

4d2ddf7c81...cs.exe

windows7-x64

7

4d2ddf7c81...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    4d2ddf7c812fcc60a764e8a76f8042da17cec7f4bf3177f54026d113e7194f1c_NeikiAnalytics.exe

  • Size

    3.1MB

  • Sample

    240624-hrtn9ashpq

  • MD5

    ed31a3f6322e8bbfba543cafa267b190

  • SHA1

    9c8ba3ddf6ac657a2aca74e168dd00f86210a52c

  • SHA256

    4d2ddf7c812fcc60a764e8a76f8042da17cec7f4bf3177f54026d113e7194f1c

  • SHA512

    b2866d33bab2ace12d3971aa5426f820e5751cfc1d011519bce041cd2e2dedea1b219891dafefd76cbfeac2bc82111b3e2aa3d301834f1ce50cec62241827a8d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUp8bVz8eLFc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      4d2ddf7c812fcc60a764e8a76f8042da17cec7f4bf3177f54026d113e7194f1c_NeikiAnalytics.exe

    • Size

      3.1MB

    • MD5

      ed31a3f6322e8bbfba543cafa267b190

    • SHA1

      9c8ba3ddf6ac657a2aca74e168dd00f86210a52c

    • SHA256

      4d2ddf7c812fcc60a764e8a76f8042da17cec7f4bf3177f54026d113e7194f1c

    • SHA512

      b2866d33bab2ace12d3971aa5426f820e5751cfc1d011519bce041cd2e2dedea1b219891dafefd76cbfeac2bc82111b3e2aa3d301834f1ce50cec62241827a8d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUp8bVz8eLFc

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks