Overview

overview

10

Static

static

10

b902e38450...cs.exe

windows7-x64

10

b902e38450...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b902e3845006cca4719c34f4071fe310_NeikiAnalytics.exe

  • Size

    2.5MB

  • Sample

    240614-mq22fs1bnr

  • MD5

    b902e3845006cca4719c34f4071fe310

  • SHA1

    53b98357c310a89d3390a1c6e63fb72d448567c9

  • SHA256

    9ce7f3fcb79d6e1af3746e0ca9596a114b57719237863721961f8775a8e96d40

  • SHA512

    c0fd9cdeee2e09c19bbca17b977627978f5b8e0ee9b8522a00d37122eda8f8ea2f9d854b6f121cd0df94c90b204b0e8f01c279f0c1aba351e1a0f95dd87ed67b

  • SSDEEP

    49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoh3r:oemTLkNdfE0pZrwX

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      b902e3845006cca4719c34f4071fe310_NeikiAnalytics.exe

    • Size

      2.5MB

    • MD5

      b902e3845006cca4719c34f4071fe310

    • SHA1

      53b98357c310a89d3390a1c6e63fb72d448567c9

    • SHA256

      9ce7f3fcb79d6e1af3746e0ca9596a114b57719237863721961f8775a8e96d40

    • SHA512

      c0fd9cdeee2e09c19bbca17b977627978f5b8e0ee9b8522a00d37122eda8f8ea2f9d854b6f121cd0df94c90b204b0e8f01c279f0c1aba351e1a0f95dd87ed67b

    • SSDEEP

      49152:oezaTF8FcNkNdfE0pZ9ozt4wIC5aIwC+Agr6tdlmU1/eoh3r:oemTLkNdfE0pZrwX

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks