General
-
Target
20741770434cba8660191b52de24e060_NeikiAnalytics.exe
-
Size
2.8MB
-
Sample
240527-f4lhasae46
-
MD5
20741770434cba8660191b52de24e060
-
SHA1
82847b4d2409b917c7d0d1d07b6b27ca74d1b6a8
-
SHA256
441c28c0b454f66aa465ef9b80953c637995f1b823565ebda12f5ff4d2b9d30b
-
SHA512
a3d4212444e2f1e94b60e74c7fbe39ad95bd7995e09b706a2fd9451dcd8dd1ca97cd45e6de1c1604177d28a06f32585a848f4eb0adbc8fa581c7cbbfce2e0890
-
SSDEEP
49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMki8Cnki2WGc2:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RI
Behavioral task
behavioral1
Sample
20741770434cba8660191b52de24e060_NeikiAnalytics.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
20741770434cba8660191b52de24e060_NeikiAnalytics.exe
-
Size
2.8MB
-
MD5
20741770434cba8660191b52de24e060
-
SHA1
82847b4d2409b917c7d0d1d07b6b27ca74d1b6a8
-
SHA256
441c28c0b454f66aa465ef9b80953c637995f1b823565ebda12f5ff4d2b9d30b
-
SHA512
a3d4212444e2f1e94b60e74c7fbe39ad95bd7995e09b706a2fd9451dcd8dd1ca97cd45e6de1c1604177d28a06f32585a848f4eb0adbc8fa581c7cbbfce2e0890
-
SSDEEP
49152:S1G1NtyBwTI3ySZbrkXV1etEKLlWUTOfeiRA2R76zHrWax9hMki8Cnki2WGc2:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2RI
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-