General

  • Target

    afd32ea357d1084476b035ae9024a1b0_NeikiAnalytics.exe

  • Size

    1.1MB

  • Sample

    240518-jrcamsae47

  • MD5

    afd32ea357d1084476b035ae9024a1b0

  • SHA1

    811f03ee4d7aad34b11a1e2b7d3f2e7d416bb52d

  • SHA256

    75cf9db8f17919bafd2e6bb4e1e217f8d15350dd14c07adb8e592343cdfcf610

  • SHA512

    0ec5266d7486ef8115fcf7f15eb563a3357bf32da26aa42b29ccf26f8ebf199a79107e76c280f190dbbfcbc6d3657de21763b2fa6232c03103943d1fd4f5a8d0

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Qk7SW4hIQ37iWj:Lz071uv4BPMkyW10/wKe6Wj

Malware Config

Targets

    • Target

      afd32ea357d1084476b035ae9024a1b0_NeikiAnalytics.exe

    • Size

      1.1MB

    • MD5

      afd32ea357d1084476b035ae9024a1b0

    • SHA1

      811f03ee4d7aad34b11a1e2b7d3f2e7d416bb52d

    • SHA256

      75cf9db8f17919bafd2e6bb4e1e217f8d15350dd14c07adb8e592343cdfcf610

    • SHA512

      0ec5266d7486ef8115fcf7f15eb563a3357bf32da26aa42b29ccf26f8ebf199a79107e76c280f190dbbfcbc6d3657de21763b2fa6232c03103943d1fd4f5a8d0

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Qk7SW4hIQ37iWj:Lz071uv4BPMkyW10/wKe6Wj

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks