Overview

overview

10

Static

static

10

06027cb8a2...cs.exe

windows7-x64

10

06027cb8a2...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06027cb8a28b30d026ec20641f29e610_NeikiAnalytics.exe

  • Size

    2.7MB

  • Sample

    240521-x3scwsfh4w

  • MD5

    06027cb8a28b30d026ec20641f29e610

  • SHA1

    6719e6ebdb3aa37226b04eacc745b84f53a9cd94

  • SHA256

    2fc6e521643c80cc8e40d18589661066325ccaea79d3077db08f99438eb13b1e

  • SHA512

    b90a2b6c1cdcc94ab20bc6f4301aef66e55c13b482652ededb39ad25d615ab643c4597daf32f15b2ab64f21473370f946611a2fe6f425d6b9ffaad340085b470

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIlMmSdIc1lNpEdxAggHi:BemTLkNdfE0pZrT

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      06027cb8a28b30d026ec20641f29e610_NeikiAnalytics.exe

    • Size

      2.7MB

    • MD5

      06027cb8a28b30d026ec20641f29e610

    • SHA1

      6719e6ebdb3aa37226b04eacc745b84f53a9cd94

    • SHA256

      2fc6e521643c80cc8e40d18589661066325ccaea79d3077db08f99438eb13b1e

    • SHA512

      b90a2b6c1cdcc94ab20bc6f4301aef66e55c13b482652ededb39ad25d615ab643c4597daf32f15b2ab64f21473370f946611a2fe6f425d6b9ffaad340085b470

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIlMmSdIc1lNpEdxAggHi:BemTLkNdfE0pZrT

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks