Overview

overview

10

Static

static

10

0d9a732b6c...cs.exe

windows7-x64

10

0d9a732b6c...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0d9a732b6c52646923c44d48bf045850_NeikiAnalytics

  • Size

    2.3MB

  • MD5

    0d9a732b6c52646923c44d48bf045850

  • SHA1

    da273b11c17ad30110cb92f512c30121179a8b91

  • SHA256

    50947ffbef77252e422d394b52b7e7a37c1209c3e81253efd5a73930706ffefd

  • SHA512

    4ba042c8c2f71c42e5d926a8116845504c6bd4dab7934bcd278c5fc8b77746d4d9b966d43d567847613a0f27cc62715a99bd07bc30fe402c6e3ec47c67a2d026

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxYDvZThTwn1:BemTLkNdfE0pZrwK

Score
10/10
minerupxkpotxmrig

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
    kpot
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0d9a732b6c52646923c44d48bf045850_NeikiAnalytics
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections