Overview

overview

10

Static

static

10

07b03efa05...cs.exe

windows7-x64

10

07b03efa05...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    07b03efa0537b4de9dbcc5c92957d510_NeikiAnalytics.exe

  • Size

    2.2MB

  • Sample

    240610-dg65dabg84

  • MD5

    07b03efa0537b4de9dbcc5c92957d510

  • SHA1

    5a56cc7bda91ae5905400962f42c8d336083aae5

  • SHA256

    8620af2e229190a7fb8e82340402a9604bcfa742a10a03196064c829332dbb22

  • SHA512

    61c89c18f527f952e5f97e50a4141d2b972a795c21a23b4f155c25f0cb452acc6492c5dba400793d7b30ca9748bc435a3f266c53dbba91c78cf881618dc58e02

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2zTySv:BemTLkNdfE0pZrwW

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      07b03efa0537b4de9dbcc5c92957d510_NeikiAnalytics.exe

    • Size

      2.2MB

    • MD5

      07b03efa0537b4de9dbcc5c92957d510

    • SHA1

      5a56cc7bda91ae5905400962f42c8d336083aae5

    • SHA256

      8620af2e229190a7fb8e82340402a9604bcfa742a10a03196064c829332dbb22

    • SHA512

      61c89c18f527f952e5f97e50a4141d2b972a795c21a23b4f155c25f0cb452acc6492c5dba400793d7b30ca9748bc435a3f266c53dbba91c78cf881618dc58e02

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6StVEnmcI+2zTySv:BemTLkNdfE0pZrwW

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks