35946d85fce79300996c5913eb023b040f3a459fd6a910bdd8fd0b7dd9fdcc12 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

35946d85fc...cs.exe

windows7-x64

7

35946d85fc...cs.exe

windows10-2004-x64

7

Sharing

General

Target

35946d85fce79300996c5913eb023b040f3a459fd6a910bdd8fd0b7dd9fdcc12_NeikiAnalytics.exe
Size

648KB
Sample

240701-e5771swfke
MD5

d99a4d42147831c6f1db6e31e3a3d1e0
SHA1

dfc3197b9eb6db088c5230bf4afae9d682f22772
SHA256

35946d85fce79300996c5913eb023b040f3a459fd6a910bdd8fd0b7dd9fdcc12
SHA512

6ff24fbc0f17a6f017fb81733e3bc21e3de9e9ac5b77537bdde258363574b62fafd1ea5f97ba5cf54625b337785c9cd1b03d8e4a99fb551e75332dfa3629db24
SSDEEP

12288:hqz2DWUyOdlI7KcBBxeXZY7Zoxxau7gnijY5C1uP8xwB:cz2DW3ZGXkHu7gi05yu5

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

35946d85fce79300996c5913eb023b040f3a459fd6a910bdd8fd0b7dd9fdcc12_NeikiAnalytics.exe

Resource

win7-20240508-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

35946d85fce79300996c5913eb023b040f3a459fd6a910bdd8fd0b7dd9fdcc12_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  35946d85fce79300996c5913eb023b040f3a459fd6a910bdd8fd0b7dd9fdcc12_NeikiAnalytics.exe
- Size
  
  648KB
- MD5
  
  d99a4d42147831c6f1db6e31e3a3d1e0
- SHA1
  
  dfc3197b9eb6db088c5230bf4afae9d682f22772
- SHA256
  
  35946d85fce79300996c5913eb023b040f3a459fd6a910bdd8fd0b7dd9fdcc12
- SHA512
  
  6ff24fbc0f17a6f017fb81733e3bc21e3de9e9ac5b77537bdde258363574b62fafd1ea5f97ba5cf54625b337785c9cd1b03d8e4a99fb551e75332dfa3629db24
- SSDEEP
  
  12288:hqz2DWUyOdlI7KcBBxeXZY7Zoxxau7gnijY5C1uP8xwB:cz2DW3ZGXkHu7gi05yu5
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Query Registry

Peripheral Device Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy