General
-
Target
3042d798685d52b4d885d32e79a282e0_NeikiAnalytics.exe
-
Size
1.6MB
-
Sample
240522-qgljwscf32
-
MD5
3042d798685d52b4d885d32e79a282e0
-
SHA1
16abb77ce8579ae4d6471c9c99dc311873586167
-
SHA256
06462278c222041dc75ffcfe0c89816f4869fbffd6e2c8c44c456300767ed47c
-
SHA512
4562498b065c1bbd59be18a79976bf6c6a599c4a79feb6d3fc1a2de31dfcd802ddaeca3e06bb0ba4dfe121eafff6a27b59afe4b0ec5fb20438b4be0cb43f6d60
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkFfkeMlN675EgEPgsU5qTqOk0t2MPnt4Jh/eFXGz0:Lz071uv4BPMkFfdg6NsTt2MP1GA
Behavioral task
behavioral1
Sample
3042d798685d52b4d885d32e79a282e0_NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
3042d798685d52b4d885d32e79a282e0_NeikiAnalytics.exe
-
Size
1.6MB
-
MD5
3042d798685d52b4d885d32e79a282e0
-
SHA1
16abb77ce8579ae4d6471c9c99dc311873586167
-
SHA256
06462278c222041dc75ffcfe0c89816f4869fbffd6e2c8c44c456300767ed47c
-
SHA512
4562498b065c1bbd59be18a79976bf6c6a599c4a79feb6d3fc1a2de31dfcd802ddaeca3e06bb0ba4dfe121eafff6a27b59afe4b0ec5fb20438b4be0cb43f6d60
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkFfkeMlN675EgEPgsU5qTqOk0t2MPnt4Jh/eFXGz0:Lz071uv4BPMkFfdg6NsTt2MP1GA
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-