General

  • Target

    975c68e4ffe4bfb5280e3361b9fb1190_NeikiAnalytics.exe

  • Size

    1.1MB

  • Sample

    240518-f35vjsdf98

  • MD5

    975c68e4ffe4bfb5280e3361b9fb1190

  • SHA1

    4cf75b2f150699232d8746fab007e105204c8baa

  • SHA256

    03e6fe766363a009a13d401ca6dd9e86bdab4bc69a2216317e6da3e76b7df673

  • SHA512

    8445a5693c583c7704c5987ffd80c5201fa7ae89f334a73e804e7edb361da5f6bc5bd7843a11fc6a5158dbecc97453e756acc193b5d04b651d60b8e5458ae143

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Qk7SW4hIQ37iWi/:Lz071uv4BPMkyW10/wKe6Wm

Malware Config

Targets

    • Target

      975c68e4ffe4bfb5280e3361b9fb1190_NeikiAnalytics.exe

    • Size

      1.1MB

    • MD5

      975c68e4ffe4bfb5280e3361b9fb1190

    • SHA1

      4cf75b2f150699232d8746fab007e105204c8baa

    • SHA256

      03e6fe766363a009a13d401ca6dd9e86bdab4bc69a2216317e6da3e76b7df673

    • SHA512

      8445a5693c583c7704c5987ffd80c5201fa7ae89f334a73e804e7edb361da5f6bc5bd7843a11fc6a5158dbecc97453e756acc193b5d04b651d60b8e5458ae143

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Qk7SW4hIQ37iWi/:Lz071uv4BPMkyW10/wKe6Wm

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks