Overview

overview

7

Static

static

3

52cd86ae21...cs.exe

windows7-x64

7

52cd86ae21...cs.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    52cd86ae216150c4ece2c9ab9f0fefa3225141630633a99d2fa2804fc6cbd050_NeikiAnalytics.exe

  • Size

    233KB

  • Sample

    240624-jnnt9svdlj

  • MD5

    390ab9d346b7a7e47e7f0c6647591e20

  • SHA1

    3d826ab037756aaf4d339b239ac5d2c3d9cea9ae

  • SHA256

    52cd86ae216150c4ece2c9ab9f0fefa3225141630633a99d2fa2804fc6cbd050

  • SHA512

    9535222e2e5f45bb2751ba9f359ca35cc4e44d23f8064bb26713f1a425be910e6bde299fa43f66c88a4069be833bab6bc78caf5a3613ec57e1793bd3264fa437

  • SSDEEP

    6144:thw+7mE2MlfFF1Dq+fy0uS/7jjgsy4DeFXF5kQIgXY:SXMlfpq+fHTzjvy4DAXF5k1wY

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      52cd86ae216150c4ece2c9ab9f0fefa3225141630633a99d2fa2804fc6cbd050_NeikiAnalytics.exe

    • Size

      233KB

    • MD5

      390ab9d346b7a7e47e7f0c6647591e20

    • SHA1

      3d826ab037756aaf4d339b239ac5d2c3d9cea9ae

    • SHA256

      52cd86ae216150c4ece2c9ab9f0fefa3225141630633a99d2fa2804fc6cbd050

    • SHA512

      9535222e2e5f45bb2751ba9f359ca35cc4e44d23f8064bb26713f1a425be910e6bde299fa43f66c88a4069be833bab6bc78caf5a3613ec57e1793bd3264fa437

    • SSDEEP

      6144:thw+7mE2MlfFF1Dq+fy0uS/7jjgsy4DeFXF5kQIgXY:SXMlfpq+fHTzjvy4DAXF5k1wY

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks