General

  • Target

    2cd49ec4fcbebd0adc86ead1912a76d0_NeikiAnalytics.exe

  • Size

    2.0MB

  • Sample

    240612-kq2dtawgkk

  • MD5

    2cd49ec4fcbebd0adc86ead1912a76d0

  • SHA1

    ce4f638a7cd04a44ae7ab04593fe5d3e161fdc03

  • SHA256

    2a242404032d19b524e04dc41263b2a6ae1684a815e32dceb55a0e643d3f487c

  • SHA512

    ccbac76a2c063a999deb004c4fc95df0f580729a1431df8817da7938e472db016ab18e117601489e29e1aee5967140178ee19e4442230f5983beeea1116d6141

  • SSDEEP

    49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+AKwOowxQm+PtK+:BemTLkNdfE0pZrk

Score
10/10

Malware Config

Targets

    • Target

      2cd49ec4fcbebd0adc86ead1912a76d0_NeikiAnalytics.exe

    • Size

      2.0MB

    • MD5

      2cd49ec4fcbebd0adc86ead1912a76d0

    • SHA1

      ce4f638a7cd04a44ae7ab04593fe5d3e161fdc03

    • SHA256

      2a242404032d19b524e04dc41263b2a6ae1684a815e32dceb55a0e643d3f487c

    • SHA512

      ccbac76a2c063a999deb004c4fc95df0f580729a1431df8817da7938e472db016ab18e117601489e29e1aee5967140178ee19e4442230f5983beeea1116d6141

    • SSDEEP

      49152:BezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+AKwOowxQm+PtK+:BemTLkNdfE0pZrk

    Score
    10/10
    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks