General

  • Target

    15922f165777288d99a9a55b3c59fb92fb093605d41d38b561b12f458c11954c_NeikiAnalytics

  • Size

    2.3MB

  • Sample

    240521-hsxsascb63

  • MD5

    7011ae7c079aba18a9d1adaa6b29c9e0

  • SHA1

    c23dc2a2035d2201861d549bf83354432f73a196

  • SHA256

    15922f165777288d99a9a55b3c59fb92fb093605d41d38b561b12f458c11954c

  • SHA512

    f61ae232580e1f0c357890ae8c050783fae7a4d651a5bcaaafea1ecde8821e2aba51c46466ebb9a19943ed5ea340a3ccdf71ddaeb5769ee26a9a93976a834436

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNvFMs+e:BemTLkNdfE0pZrwe

Malware Config

Targets

    • Target

      15922f165777288d99a9a55b3c59fb92fb093605d41d38b561b12f458c11954c_NeikiAnalytics

    • Size

      2.3MB

    • MD5

      7011ae7c079aba18a9d1adaa6b29c9e0

    • SHA1

      c23dc2a2035d2201861d549bf83354432f73a196

    • SHA256

      15922f165777288d99a9a55b3c59fb92fb093605d41d38b561b12f458c11954c

    • SHA512

      f61ae232580e1f0c357890ae8c050783fae7a4d651a5bcaaafea1ecde8821e2aba51c46466ebb9a19943ed5ea340a3ccdf71ddaeb5769ee26a9a93976a834436

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNvFMs+e:BemTLkNdfE0pZrwe

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks