General

  • Target

    760bf19732f19ccb60322e1569d0e070_NeikiAnalytics.exe

  • Size

    2.0MB

  • Sample

    240613-myaxyazclm

  • MD5

    760bf19732f19ccb60322e1569d0e070

  • SHA1

    4bfb9d91ceb7a2ab0c79eb0180f8c27bbc769225

  • SHA256

    bfa65c57d96d16576b95e171ec71b959e133f932b77bfe5c9a344b99246afab6

  • SHA512

    f045ab1e7318a998f24eeba42acb1def6357a7fdb994ac56edb1e9bc66c9974e0d504b4dc0b69fcd52e32b226ce0c98da48d4238141ef5aec93e96720abe5461

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc20:GemTLkNdfE0pZaQ8

Malware Config

Targets

    • Target

      760bf19732f19ccb60322e1569d0e070_NeikiAnalytics.exe

    • Size

      2.0MB

    • MD5

      760bf19732f19ccb60322e1569d0e070

    • SHA1

      4bfb9d91ceb7a2ab0c79eb0180f8c27bbc769225

    • SHA256

      bfa65c57d96d16576b95e171ec71b959e133f932b77bfe5c9a344b99246afab6

    • SHA512

      f045ab1e7318a998f24eeba42acb1def6357a7fdb994ac56edb1e9bc66c9974e0d504b4dc0b69fcd52e32b226ce0c98da48d4238141ef5aec93e96720abe5461

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc20:GemTLkNdfE0pZaQ8

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks