Overview

overview

10

Static

static

10

353ece89c8...cs.exe

windows7-x64

10

353ece89c8...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    353ece89c80019e2ad9d77e814f78630_NeikiAnalytics.exe

  • Size

    1.9MB

  • Sample

    240602-ewtm9saf61

  • MD5

    353ece89c80019e2ad9d77e814f78630

  • SHA1

    c2d27e0162d1deabe697169e58ef8b2d82899865

  • SHA256

    df36a337655ddb8c4d555d2002b5252dc4c6a2812c84627d7636a74c328cf916

  • SHA512

    d9ccb18cc87f87684cc2bcc822e4a8885f59b3deb92f86d7f2b7f17c640ab0543005f8d660f9882000a253ad09336750e71e6b5e0e925d1b6f7f2e7b3a88558c

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FFC+wA:GemTLkNdfE0pZaQo

Score
10/10
kpotxmrigminerstealertrojan

Malware Config

Targets

    • Target

      353ece89c80019e2ad9d77e814f78630_NeikiAnalytics.exe

    • Size

      1.9MB

    • MD5

      353ece89c80019e2ad9d77e814f78630

    • SHA1

      c2d27e0162d1deabe697169e58ef8b2d82899865

    • SHA256

      df36a337655ddb8c4d555d2002b5252dc4c6a2812c84627d7636a74c328cf916

    • SHA512

      d9ccb18cc87f87684cc2bcc822e4a8885f59b3deb92f86d7f2b7f17c640ab0543005f8d660f9882000a253ad09336750e71e6b5e0e925d1b6f7f2e7b3a88558c

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FFC+wA:GemTLkNdfE0pZaQo

    Score
    10/10
    kpotxmrigminerstealertrojan

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks