f73a903e013d6e5660a5ef2740ffa57b47190c8bc8d50b200f535c7adce577b2

Analysis

max time kernel
118s
max time network
126s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
07/05/2024, 22:20

Target

4edf12bc1a8dc66e3347230cab885a60_NEIKI.exe
Size

228KB
MD5

4edf12bc1a8dc66e3347230cab885a60
SHA1

eaba9a1302b0ac0b2e966c7ab7341aacfcdae327
SHA256

f73a903e013d6e5660a5ef2740ffa57b47190c8bc8d50b200f535c7adce577b2
SHA512

ec35b8f209d413846a52cf9dfdec4cf5fd85a3eeddf57710c9f1f278ba59f045c5aa680698ddd3c7388ba57e1108860eeccca7a13e3dafe6ab11cc7337198a64
SSDEEP

3072:UIh1bk1FVvHcTkO4O9fcj1l43Z4u1GfE3FNR94Kn0FfBl5okI709Ads:phlkhkVfqlQGaFN0KnymYis

Score

4^/10

Drops file in Windows directory 3 IoCs

description	ioc	Process
File opened for modification	C:\Windows\system\bot1.exe	4edf12bc1a8dc66e3347230cab885a60_NEIKI.exe
File opened for modification	C:\Windows\system\RCX9750.tmp	4edf12bc1a8dc66e3347230cab885a60_NEIKI.exe
File created	C:\Windows\system\bot1.exe	4edf12bc1a8dc66e3347230cab885a60_NEIKI.exe

C:\Users\Admin\AppData\Local\Temp\4edf12bc1a8dc66e3347230cab885a60_NEIKI.exe
"C:\Users\Admin\AppData\Local\Temp\4edf12bc1a8dc66e3347230cab885a60_NEIKI.exe"
1⤵
- Drops file in Windows directory
PID:1952

memory/1952-0-0x0000000000400000-0x0000000000421000-memory.dmp

Filesize
132KB

Download
memory/1952-14-0x0000000000400000-0x0000000000421000-memory.dmp

Filesize
132KB

Download