Overview

overview

10

Static

static

10

5b8a6122f9...cs.exe

windows7-x64

10

5b8a6122f9...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5b8a6122f900688b5797b64fdc472ac0_NeikiAnalytics.exe

  • Size

    2.2MB

  • Sample

    240529-31pf4sfg82

  • MD5

    5b8a6122f900688b5797b64fdc472ac0

  • SHA1

    c529deef0ec94662d5be7bc5f8a5f295df6ec32a

  • SHA256

    1540025f14dfa92c2a1f5ebf4dfe62d0ae9707b9b1be8756a5522629e5a99209

  • SHA512

    baa01b9b85f0f7511279ac3638db413f3f3423300c50f3ac705a2b9fdb9ba9579019df3bf17fd1c2708435fafe53f230484ca712b2ac6093365b6efc2e15fa6b

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2IAsZ:BemTLkNdfE0pZrwr

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      5b8a6122f900688b5797b64fdc472ac0_NeikiAnalytics.exe

    • Size

      2.2MB

    • MD5

      5b8a6122f900688b5797b64fdc472ac0

    • SHA1

      c529deef0ec94662d5be7bc5f8a5f295df6ec32a

    • SHA256

      1540025f14dfa92c2a1f5ebf4dfe62d0ae9707b9b1be8756a5522629e5a99209

    • SHA512

      baa01b9b85f0f7511279ac3638db413f3f3423300c50f3ac705a2b9fdb9ba9579019df3bf17fd1c2708435fafe53f230484ca712b2ac6093365b6efc2e15fa6b

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2IAsZ:BemTLkNdfE0pZrwr

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks