Overview

overview

7

Static

static

3

557dfe059e...cs.exe

windows7-x64

7

557dfe059e...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    557dfe059e7d33a45046d8fb1a5e10554152f54d7c4ba14de1531c447c586e16_NeikiAnalytics.exe

  • Size

    2.6MB

  • Sample

    240624-j4gqwssekg

  • MD5

    c835c1563fb5693625ad2a90e77686d0

  • SHA1

    f7bd437d2eae7e7e27315667cc3b4ed80177b979

  • SHA256

    557dfe059e7d33a45046d8fb1a5e10554152f54d7c4ba14de1531c447c586e16

  • SHA512

    9960cb91cfadb86871b8516dce5e5832484816419bac7354f3928d29b36ef75b077d68fbb9034f23205ac0f9c026ef841cbfe9954ca6ce8ba4c94ba87b43dc46

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpHb

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      557dfe059e7d33a45046d8fb1a5e10554152f54d7c4ba14de1531c447c586e16_NeikiAnalytics.exe

    • Size

      2.6MB

    • MD5

      c835c1563fb5693625ad2a90e77686d0

    • SHA1

      f7bd437d2eae7e7e27315667cc3b4ed80177b979

    • SHA256

      557dfe059e7d33a45046d8fb1a5e10554152f54d7c4ba14de1531c447c586e16

    • SHA512

      9960cb91cfadb86871b8516dce5e5832484816419bac7354f3928d29b36ef75b077d68fbb9034f23205ac0f9c026ef841cbfe9954ca6ce8ba4c94ba87b43dc46

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpHb

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks