General
-
Target
aba939d9c5814c80153f1f1be36287c0_NeikiAnalytics.exe
-
Size
1.6MB
-
Sample
240525-rh871sfg39
-
MD5
aba939d9c5814c80153f1f1be36287c0
-
SHA1
cab1c90c9e83aa6c076c93a556222c67a43288ce
-
SHA256
eda8ff9459cd1ca9e1ab1b64e8cd456d54706949c164367f0a088213271268d4
-
SHA512
7bd45612264900e72eb4f81c1d62d51938afc99108a18be672705a9f78f3cc5e23b7eae94d8f4f9a342b3ab519e802774ece4cc05766cd6fde864b103a4bc993
-
SSDEEP
49152:Lz071uv4BPMkyW10/w16BvZXBCurm/isK:NAB+
Behavioral task
behavioral1
Sample
aba939d9c5814c80153f1f1be36287c0_NeikiAnalytics.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
aba939d9c5814c80153f1f1be36287c0_NeikiAnalytics.exe
-
Size
1.6MB
-
MD5
aba939d9c5814c80153f1f1be36287c0
-
SHA1
cab1c90c9e83aa6c076c93a556222c67a43288ce
-
SHA256
eda8ff9459cd1ca9e1ab1b64e8cd456d54706949c164367f0a088213271268d4
-
SHA512
7bd45612264900e72eb4f81c1d62d51938afc99108a18be672705a9f78f3cc5e23b7eae94d8f4f9a342b3ab519e802774ece4cc05766cd6fde864b103a4bc993
-
SSDEEP
49152:Lz071uv4BPMkyW10/w16BvZXBCurm/isK:NAB+
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-