Overview

overview

10

Static

static

10

5296a7fcdf...cs.exe

windows7-x64

10

5296a7fcdf...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5296a7fcdf68b53d89cb094f987e3290_NeikiAnalytics.exe

  • Size

    2.2MB

  • Sample

    240522-2y4mkscc94

  • MD5

    5296a7fcdf68b53d89cb094f987e3290

  • SHA1

    830844ddd8eed012e8d3242e9c827d8ab64154cb

  • SHA256

    02f198a8f6c521b526dc8480472b7755906fdfe113757558a00cc6113d354aad

  • SHA512

    742569ef791f7bb6b96818e001518c2b53f0af0eb8c57238378b0208133794824db5d8f32a3a4f398cf307cf6bcb84a9d8cbeb3817f1b745a9f18bb6d62acf72

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIXGJLuIaRNfGq9Er:BemTLkNdfE0pZrK

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      5296a7fcdf68b53d89cb094f987e3290_NeikiAnalytics.exe

    • Size

      2.2MB

    • MD5

      5296a7fcdf68b53d89cb094f987e3290

    • SHA1

      830844ddd8eed012e8d3242e9c827d8ab64154cb

    • SHA256

      02f198a8f6c521b526dc8480472b7755906fdfe113757558a00cc6113d354aad

    • SHA512

      742569ef791f7bb6b96818e001518c2b53f0af0eb8c57238378b0208133794824db5d8f32a3a4f398cf307cf6bcb84a9d8cbeb3817f1b745a9f18bb6d62acf72

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIXGJLuIaRNfGq9Er:BemTLkNdfE0pZrK

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks