Overview

overview

10

Static

static

10

3a8bf6c315...cs.exe

windows7-x64

10

3a8bf6c315...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3a8bf6c3156f8ec9bb58a154e08d1860_NeikiAnalytics

  • Size

    2.2MB

  • MD5

    3a8bf6c3156f8ec9bb58a154e08d1860

  • SHA1

    32271f92f508d5c6a71e7d72485b5f14d5f5d565

  • SHA256

    2887beb20552c80564fd2bd3d9c75c38fb635e686b5b8b4a1dadab9bfc4986a5

  • SHA512

    84f86816429ac309f67bdbb41a00d394c79176177d23de0497533ec5bac087ef020a6403e40217738e9d0f33dbfafae9edeb7b160eb67f91ecca54ef8bcbc366

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcKxYDvZLX:BemTLkNdfE0pZrwp

Score
10/10
minerupxkpotxmrig

Malware Config

Signatures

  • KPOT Core Executable 1 IoCs
  • Kpot family
    kpot
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3a8bf6c3156f8ec9bb58a154e08d1860_NeikiAnalytics
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections