General

  • Target

    d85e5728ea06d210d21b63ecbcde15c0_NeikiAnalytics.exe

  • Size

    1.6MB

  • Sample

    240523-y1t95seg4w

  • MD5

    d85e5728ea06d210d21b63ecbcde15c0

  • SHA1

    5b17f5d37f7d034ee0e0cd4fdb3d5539b5148a18

  • SHA256

    7e59e10ecca753bbc7932aa2f59bd66e5237bb406f91765b8b97375f68e50b4a

  • SHA512

    1f045877fdc8587d9549ef0d82a1cbddbe7eb3e24b1b7d3ab81e6286eb6cab43f4bac655ba57b26b8ee156e4fc405a10ae76842fc6ba4199f5df472c0d1ddbe4

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Q1szp5NnNvZWNChZ7fI+BJBxyODsbJEE:Lz071uv4BPMkyW10/w16BvZXBCurm7

Malware Config

Targets

    • Target

      d85e5728ea06d210d21b63ecbcde15c0_NeikiAnalytics.exe

    • Size

      1.6MB

    • MD5

      d85e5728ea06d210d21b63ecbcde15c0

    • SHA1

      5b17f5d37f7d034ee0e0cd4fdb3d5539b5148a18

    • SHA256

      7e59e10ecca753bbc7932aa2f59bd66e5237bb406f91765b8b97375f68e50b4a

    • SHA512

      1f045877fdc8587d9549ef0d82a1cbddbe7eb3e24b1b7d3ab81e6286eb6cab43f4bac655ba57b26b8ee156e4fc405a10ae76842fc6ba4199f5df472c0d1ddbe4

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkyW1HU/ek5Q1szp5NnNvZWNChZ7fI+BJBxyODsbJEE:Lz071uv4BPMkyW10/w16BvZXBCurm7

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks