15f64286fd62ef121a8fa60a03db1a04ecbf8c61a3da61e6411747aefd40c447

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
08/05/2024, 19:02

Target

13657e254707dbdb8dcfe5cd1ba34cf0_NEIKI.exe
Size

424KB
MD5

13657e254707dbdb8dcfe5cd1ba34cf0
SHA1

420b84b0d0bd9e73c4bb35a9850187ff48436313
SHA256

15f64286fd62ef121a8fa60a03db1a04ecbf8c61a3da61e6411747aefd40c447
SHA512

2a341cb193d833425e85a77c6b9c5f1c9bb85b9ef70b4bc83e13928d37eec104c4e278949639188a14d2a6a10e5ac80984ab900a5edc2701599f57e621ae7c3d
SSDEEP

1536:ANX4YomrZTwKRo1D9KfmUKNicFbUSNzoiuXRDPDZ1utksa:Apnow2D9KA0kUsoiuh51Id

Score

1^/10

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
3020	13657e254707dbdb8dcfe5cd1ba34cf0_NEIKI.exe

C:\Users\Admin\AppData\Local\Temp\13657e254707dbdb8dcfe5cd1ba34cf0_NEIKI.exe
"C:\Users\Admin\AppData\Local\Temp\13657e254707dbdb8dcfe5cd1ba34cf0_NEIKI.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:3020

memory/3020-0-0x0000000000400000-0x000000000046D000-memory.dmp

Filesize
436KB

Download
memory/3020-1-0x0000000000400000-0x000000000046D000-memory.dmp

Filesize
436KB

Download