General

  • Target

    45858b93029b77c901e31315576b4130_NeikiAnalytics.exe

  • Size

    2.3MB

  • Sample

    240602-gvfq5adg83

  • MD5

    45858b93029b77c901e31315576b4130

  • SHA1

    34918c71b0f9b4edb09c8ea188b99f837a49efa5

  • SHA256

    dfad8ee4088725d1c20bc843a335ce0a1262aa7bb42e85bef400c48005ed0164

  • SHA512

    45f7e398d9f232187e0a9fdc1161a3db5bf667c8f341cdb0730897107ce225646c8c94eb371f43f8709996f2f7807b8331201d0ec1c744e8071b4f4bdb7a554a

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNvFMs+D:BemTLkNdfE0pZrwD

Malware Config

Targets

    • Target

      45858b93029b77c901e31315576b4130_NeikiAnalytics.exe

    • Size

      2.3MB

    • MD5

      45858b93029b77c901e31315576b4130

    • SHA1

      34918c71b0f9b4edb09c8ea188b99f837a49efa5

    • SHA256

      dfad8ee4088725d1c20bc843a335ce0a1262aa7bb42e85bef400c48005ed0164

    • SHA512

      45f7e398d9f232187e0a9fdc1161a3db5bf667c8f341cdb0730897107ce225646c8c94eb371f43f8709996f2f7807b8331201d0ec1c744e8071b4f4bdb7a554a

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6SNvFMs+D:BemTLkNdfE0pZrwD

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks