Overview

overview

10

Static

static

10

2697bf930f...cs.exe

windows7-x64

10

2697bf930f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2697bf930f0331481f0ebea6d4593516ba923da99b31632685f39aa8ac24dd42_NeikiAnalytics.exe

  • Size

    1.4MB

  • Sample

    240623-bh1mwatcrg

  • MD5

    30df82f0c94a1d8a288774f7b2130fb0

  • SHA1

    0552a5926f1e3661befcbce1c6c7c5c041d38aec

  • SHA256

    2697bf930f0331481f0ebea6d4593516ba923da99b31632685f39aa8ac24dd42

  • SHA512

    80bbe3b210ba12b6ec6613bad6f2ad6fd79fd806bd0625da439d8b076b5c6d0ac87cdacd309c6363ddf9b61d6d28f25f6febe1351ad9fdbade8972440ada0c69

  • SSDEEP

    24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+sqsen3o:ROdWCCi7/raZ5aIwC+Agr6SNasrs84

Score
10/10
kpotxmrigminerstealertrojanupx

Malware Config

Targets

    • Target

      2697bf930f0331481f0ebea6d4593516ba923da99b31632685f39aa8ac24dd42_NeikiAnalytics.exe

    • Size

      1.4MB

    • MD5

      30df82f0c94a1d8a288774f7b2130fb0

    • SHA1

      0552a5926f1e3661befcbce1c6c7c5c041d38aec

    • SHA256

      2697bf930f0331481f0ebea6d4593516ba923da99b31632685f39aa8ac24dd42

    • SHA512

      80bbe3b210ba12b6ec6613bad6f2ad6fd79fd806bd0625da439d8b076b5c6d0ac87cdacd309c6363ddf9b61d6d28f25f6febe1351ad9fdbade8972440ada0c69

    • SSDEEP

      24576:RVIl/WDGCi7/qkat6Q5aILMCfmAUjzX6xQ0+wCIygDsAUSTsU9+sqsen3o:ROdWCCi7/raZ5aIwC+Agr6SNasrs84

    Score
    10/10
    kpotxmrigminerstealertrojanupx

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks