General

  • Target

    49edf5dae092ddd0056eb8d8eda202b0_NeikiAnalytics.exe

  • Size

    1.3MB

  • Sample

    240602-hgj23aee77

  • MD5

    49edf5dae092ddd0056eb8d8eda202b0

  • SHA1

    c923d52af02092db92493f90ee920a5db2f01304

  • SHA256

    8b8563a94eecd0334c36eee25901cf90355a2204193c5c203945901071962584

  • SHA512

    a2b4b06e202121b2332287689e8291c646557e93ab26decadcf6e1cc4ff41c99f19a245ec88ce0531326e2826631e7b202baa4bde21059254dc90c95ce8db0e2

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPl+Me7bPMS8YkgcI5DC+p2knHC0IGV+Dm4:knw9oUUEEDl+xTMS8Tgu+p2knGp

Malware Config

Targets

    • Target

      49edf5dae092ddd0056eb8d8eda202b0_NeikiAnalytics.exe

    • Size

      1.3MB

    • MD5

      49edf5dae092ddd0056eb8d8eda202b0

    • SHA1

      c923d52af02092db92493f90ee920a5db2f01304

    • SHA256

      8b8563a94eecd0334c36eee25901cf90355a2204193c5c203945901071962584

    • SHA512

      a2b4b06e202121b2332287689e8291c646557e93ab26decadcf6e1cc4ff41c99f19a245ec88ce0531326e2826631e7b202baa4bde21059254dc90c95ce8db0e2

    • SSDEEP

      24576:JanwhSe11QSONCpGJCjETPl+Me7bPMS8YkgcI5DC+p2knHC0IGV+Dm4:knw9oUUEEDl+xTMS8Tgu+p2knGp

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks