Behavioral task
behavioral1
Sample
0e87251b0bb6c5b124b068ccabd99330_NeikiAnalytics.exe
Resource
win7-20240220-en
General
-
Target
0e87251b0bb6c5b124b068ccabd99330_NeikiAnalytics
-
Size
2.9MB
-
MD5
0e87251b0bb6c5b124b068ccabd99330
-
SHA1
c0094d9a61b87f159e61e3d2d096bff44b2bce2a
-
SHA256
1820379dc6ba50fc4e7a8f3a20a25b587437d4b0d50b4edd83ae84f618c33c79
-
SHA512
6b6c602e4d5c66319d067585e996f453fa63fabe5cdaf552037edcc6ada27669e80eefd069f99ba9ceac49170c75d3093586484085c2a2ad4de530fac7e4ab4b
-
SSDEEP
49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMkFfdk2af/We:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2Rj
Malware Config
Signatures
-
XMRig Miner payload 1 IoCs
resource yara_rule sample xmrig -
Xmrig family
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0e87251b0bb6c5b124b068ccabd99330_NeikiAnalytics
Files
-
0e87251b0bb6c5b124b068ccabd99330_NeikiAnalytics.exe windows:6 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 1.3MB - Virtual size: 3.4MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 525KB - Virtual size: 528KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE