General

  • Target

    08ed21f02a33879c78c983e86e9167d0_NeikiAnalytics.exe

  • Size

    1.5MB

  • Sample

    240527-ws3kfacg3y

  • MD5

    08ed21f02a33879c78c983e86e9167d0

  • SHA1

    2fc22f9d4f5fda93f51a29576eadcf430d81a3e7

  • SHA256

    3e790ff451fd359d9425cbc965f5e9d40ca42c2015dde211dafe4c6f255eb946

  • SHA512

    038e3a5053465783815f16884e68e17d9dc0d1ee98107704908cdc04316ec414a269ffdc8c54d5657cacbcfc64964b04c8415f042e2cbbae85ddd36e54fbf69d

  • SSDEEP

    24576:RVIl/WDGCi7/qkatXBF6727XL1+KICdyyPo++UIUFlBaQVNK/JBRXHvhIIJ1lQqj:ROdWCCi7/rahHxJTFlQZAqU6

Malware Config

Targets

    • Target

      08ed21f02a33879c78c983e86e9167d0_NeikiAnalytics.exe

    • Size

      1.5MB

    • MD5

      08ed21f02a33879c78c983e86e9167d0

    • SHA1

      2fc22f9d4f5fda93f51a29576eadcf430d81a3e7

    • SHA256

      3e790ff451fd359d9425cbc965f5e9d40ca42c2015dde211dafe4c6f255eb946

    • SHA512

      038e3a5053465783815f16884e68e17d9dc0d1ee98107704908cdc04316ec414a269ffdc8c54d5657cacbcfc64964b04c8415f042e2cbbae85ddd36e54fbf69d

    • SSDEEP

      24576:RVIl/WDGCi7/qkatXBF6727XL1+KICdyyPo++UIUFlBaQVNK/JBRXHvhIIJ1lQqj:ROdWCCi7/rahHxJTFlQZAqU6

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks