Overview

overview

10

Static

static

10

42a9d14a04...cs.exe

windows7-x64

10

42a9d14a04...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    42a9d14a048e26217a88d4c3120a62f0_NeikiAnalytics.exe

  • Size

    2.1MB

  • Sample

    240518-yy8pradg84

  • MD5

    42a9d14a048e26217a88d4c3120a62f0

  • SHA1

    b21915d22e14355c08f483697d1e60531f31d030

  • SHA256

    304ff138c7467f9c3f6c7733bea720eea6ffea8decd23337b0a37ab43ca7a002

  • SHA512

    1a90847a552676b282d5fed5c46e7e45308d82140171bc6b015121027ff75d2b2ee3ec22691d2ef410a8c3d84ac9c3b567272d19b83a17ff49b9243a975dcf05

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2zTyM:BemTLkNdfE0pZrwq

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      42a9d14a048e26217a88d4c3120a62f0_NeikiAnalytics.exe

    • Size

      2.1MB

    • MD5

      42a9d14a048e26217a88d4c3120a62f0

    • SHA1

      b21915d22e14355c08f483697d1e60531f31d030

    • SHA256

      304ff138c7467f9c3f6c7733bea720eea6ffea8decd23337b0a37ab43ca7a002

    • SHA512

      1a90847a552676b282d5fed5c46e7e45308d82140171bc6b015121027ff75d2b2ee3ec22691d2ef410a8c3d84ac9c3b567272d19b83a17ff49b9243a975dcf05

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2zTyM:BemTLkNdfE0pZrwq

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks