01d3b12dbf8105fd8cf4f52284b482bfeaefb2149c527e61ddbcbb2e956f51e7 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

01d3b12dbf...cs.exe

windows7-x64

7

01d3b12dbf...cs.exe

windows10-2004-x64

7

Sharing

General

Target

01d3b12dbf8105fd8cf4f52284b482bfeaefb2149c527e61ddbcbb2e956f51e7_NeikiAnalytics.exe
Size

1.2MB
Sample

240624-y5q4aavamq
MD5

d45e773887fa87d045e913c8f65d6ed0
SHA1

f010a873646a8dfde383ae2a403c29a4b84526cf
SHA256

01d3b12dbf8105fd8cf4f52284b482bfeaefb2149c527e61ddbcbb2e956f51e7
SHA512

c6d50f49ab1a575c00a7912e7de70eb0a7acc689813024567daeb3f84499cf6cf1efb469e38e5561bba0c155e4611512598aec03410d96ec5dfd5f70768ef5bc
SSDEEP

12288:zgzxqTSgZG5GnWMBUKZGYaJ08vTZLfX+PdgdnW:szxVirnlBUKZ408vTZrX+lgdW

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

01d3b12dbf8105fd8cf4f52284b482bfeaefb2149c527e61ddbcbb2e956f51e7_NeikiAnalytics.exe

Resource

win7-20240508-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

01d3b12dbf8105fd8cf4f52284b482bfeaefb2149c527e61ddbcbb2e956f51e7_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  01d3b12dbf8105fd8cf4f52284b482bfeaefb2149c527e61ddbcbb2e956f51e7_NeikiAnalytics.exe
- Size
  
  1.2MB
- MD5
  
  d45e773887fa87d045e913c8f65d6ed0
- SHA1
  
  f010a873646a8dfde383ae2a403c29a4b84526cf
- SHA256
  
  01d3b12dbf8105fd8cf4f52284b482bfeaefb2149c527e61ddbcbb2e956f51e7
- SHA512
  
  c6d50f49ab1a575c00a7912e7de70eb0a7acc689813024567daeb3f84499cf6cf1efb469e38e5561bba0c155e4611512598aec03410d96ec5dfd5f70768ef5bc
- SSDEEP
  
  12288:zgzxqTSgZG5GnWMBUKZGYaJ08vTZLfX+PdgdnW:szxVirnlBUKZ408vTZrX+lgdW
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy