Overview

overview

10

Static

static

10

b20622019f...cs.exe

windows7-x64

10

b20622019f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b20622019fb53e6dd3ee9729059854f3b977c556e9d39969a508a54c5021f767_NeikiAnalytics.exe

  • Size

    2.1MB

  • Sample

    240629-tardca1ajc

  • MD5

    3c9e4cbc505d9a92c718873c95b54940

  • SHA1

    66e653d63148ddfe38be6d949df32332c6a4f0cf

  • SHA256

    b20622019fb53e6dd3ee9729059854f3b977c556e9d39969a508a54c5021f767

  • SHA512

    32e1ff1e49118c3bf626a059860dce26ff4e518066fb0f6981f35225ce3beb1b8ba3cebe51ad8708138808bebf0d5202af1865b3f2d585cc69bc518053d5d520

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2rM:GemTLkNdfE0pZaQo

Score
10/10
kpotxmrigminerstealertrojan

Malware Config

Targets

    • Target

      b20622019fb53e6dd3ee9729059854f3b977c556e9d39969a508a54c5021f767_NeikiAnalytics.exe

    • Size

      2.1MB

    • MD5

      3c9e4cbc505d9a92c718873c95b54940

    • SHA1

      66e653d63148ddfe38be6d949df32332c6a4f0cf

    • SHA256

      b20622019fb53e6dd3ee9729059854f3b977c556e9d39969a508a54c5021f767

    • SHA512

      32e1ff1e49118c3bf626a059860dce26ff4e518066fb0f6981f35225ce3beb1b8ba3cebe51ad8708138808bebf0d5202af1865b3f2d585cc69bc518053d5d520

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9oztFwIi5aIwC+Agr6S/FYqOc2rM:GemTLkNdfE0pZaQo

    Score
    10/10
    kpotxmrigminerstealertrojan

    • KPOT

      KPOT is an information stealer that steals user data and account credentials.

      trojanstealerkpot

    • KPOT Core Executable

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks