General

  • Target

    19a8be2fb4a27ccb301e891ef6ca7de0_NeikiAnalytics.exe

  • Size

    1.5MB

  • Sample

    240610-rr72bazcpj

  • MD5

    19a8be2fb4a27ccb301e891ef6ca7de0

  • SHA1

    bda1d39ff573c42b961c3dc66046604550679105

  • SHA256

    62ea50d1a5a322bdbf314ed1c92afa9a577ca5dcaad4cd79a45a96765a4bafe3

  • SHA512

    6cce53f96f9fe2d493762f9fbcb559ddef49a88c3a919b456ac3241b99fd92580dbb278de85e1c0d8bc66dbf548ed6ced8af07606c967e9d33fa169042f46145

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjhnXwx8/2Pbx/mbGRQNqah1Xug9:Lz071uv4BPMkHC0IlnASEx/RiNleM

Malware Config

Targets

    • Target

      19a8be2fb4a27ccb301e891ef6ca7de0_NeikiAnalytics.exe

    • Size

      1.5MB

    • MD5

      19a8be2fb4a27ccb301e891ef6ca7de0

    • SHA1

      bda1d39ff573c42b961c3dc66046604550679105

    • SHA256

      62ea50d1a5a322bdbf314ed1c92afa9a577ca5dcaad4cd79a45a96765a4bafe3

    • SHA512

      6cce53f96f9fe2d493762f9fbcb559ddef49a88c3a919b456ac3241b99fd92580dbb278de85e1c0d8bc66dbf548ed6ced8af07606c967e9d33fa169042f46145

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkUCCWvLEvjhnXwx8/2Pbx/mbGRQNqah1Xug9:Lz071uv4BPMkHC0IlnASEx/RiNleM

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks