Analysis

  • max time kernel
    141s
  • max time network
    108s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/05/2024, 03:32

General

  • Target

    e02812b194b10cf235ad607cd7136d00_NEIKI.exe

  • Size

    252KB

  • MD5

    e02812b194b10cf235ad607cd7136d00

  • SHA1

    192f0218826ff466911b9bfac446751c5ed51b70

  • SHA256

    38bcf03076a1739ccd1c21dd369e622a334e0df14aa66532463cbba73b3fb54f

  • SHA512

    6761425272531e7b53e3c0a8a9a3ea8ded75f19e058117fd5b3ba23edb3bbe7c5ea43b9e83ff3c835c33c79c2ca91784082462e1596f5ee301e559225551532f

  • SSDEEP

    1536:s7+eltm8Y6jHO86s/pD28ZMwB+rjm8NiIqhn3HQ8Ba:ullL7O86s/128hUjmOiBn3w8B

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e02812b194b10cf235ad607cd7136d00_NEIKI.exe
    "C:\Users\Admin\AppData\Local\Temp\e02812b194b10cf235ad607cd7136d00_NEIKI.exe"
    1⤵
      PID:3956
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3956 -s 232
        2⤵
        • Program crash
        PID:4480
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3956 -ip 3956
      1⤵
        PID:1360

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/3956-0-0x0000000000400000-0x000000000043F000-memory.dmp

              Filesize

              252KB