General

  • Target

    90e44eb04c18d0ddd0eebbb113d05f00_NeikiAnalytics.exe

  • Size

    1.7MB

  • Sample

    240523-1lstwahh54

  • MD5

    90e44eb04c18d0ddd0eebbb113d05f00

  • SHA1

    7f0f3fe626f7bf576fba77871e986f95801361cd

  • SHA256

    9567375790050b977e91cd4eee822c9aaa336f2c8c5b342adcfc558914a37e8e

  • SHA512

    884a15f89b2f2edbb84a48241a43cdc9f9ebd9cd720a09c8e5f2ea9b97c94a6643f192807b618c3ef5c6a630d42a9a885cd72720bb833f046a874e92e434e2b6

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjuJoCSxnhvuqAP9dbWmbOt0BXdnyrY7:Lz071uv4BPMkHC0I6GCInhG1dtdF2Y7

Malware Config

Targets

    • Target

      90e44eb04c18d0ddd0eebbb113d05f00_NeikiAnalytics.exe

    • Size

      1.7MB

    • MD5

      90e44eb04c18d0ddd0eebbb113d05f00

    • SHA1

      7f0f3fe626f7bf576fba77871e986f95801361cd

    • SHA256

      9567375790050b977e91cd4eee822c9aaa336f2c8c5b342adcfc558914a37e8e

    • SHA512

      884a15f89b2f2edbb84a48241a43cdc9f9ebd9cd720a09c8e5f2ea9b97c94a6643f192807b618c3ef5c6a630d42a9a885cd72720bb833f046a874e92e434e2b6

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjuJoCSxnhvuqAP9dbWmbOt0BXdnyrY7:Lz071uv4BPMkHC0I6GCInhG1dtdF2Y7

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks