a5cda6757dca3dea1e343d546a06bc404f91c28328a61f322126c53c9994266e

Analysis

max time kernel
93s
max time network
122s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
09/05/2024, 11:54

Target

2b6026d21fc49b4443472350c2d8c6b0_NeikiAnalytics.exe
Size

74KB
MD5

2b6026d21fc49b4443472350c2d8c6b0
SHA1

adacf08bb2d37f6f58dbbe5d0e1bb7548f4a4671
SHA256

a5cda6757dca3dea1e343d546a06bc404f91c28328a61f322126c53c9994266e
SHA512

a1ea5810670e5ab797ea93f59ca350a56122049660641bc30a32fb896617b23c1413181e0a2e6e6a7a042ca75bdda2da54485ab19eae03d5cf46198380de6ee7
SSDEEP

1536:1P8KE3UknVTVpXd4Q2x6H5eCU8hh/Q/0ATiPGQQPWT0:ep37VTV5d4Q2xpIhhTA5feg

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
3536	aphixooc-ocex.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\aphixooc-ocex.exe	2b6026d21fc49b4443472350c2d8c6b0_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\aphixooc-ocex.exe	2b6026d21fc49b4443472350c2d8c6b0_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\2b6026d21fc49b4443472350c2d8c6b0_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\2b6026d21fc49b4443472350c2d8c6b0_NeikiAnalytics.exe"
1⤵
- Drops file in System32 directory
PID:2472
- C:\Windows\SysWOW64\aphixooc-ocex.exe
  "C:\Windows\SysWOW64\aphixooc-ocex.exe"
  2⤵
  - Executes dropped EXE
  PID:3536

C:\Windows\SysWOW64\aphixooc-ocex.exe

Filesize
70KB

MD5
e518518c183f7d53c866694d9369f978

SHA1
7ddb5cb266d6cfc5c62a24fccb7954862c6f7065

SHA256
3cceb365e2bce532611cb82b9bcce11cf2080d27adbc4e08184632cd3609fa40

SHA512
f455667d917f4556e674398d746e356c90471d4708b67bee99c91db2bd5788c9adb22692c06e27ff34a3ca1189cf662a8b74a82edac204d3975e463bf80e3336

Download Submit
memory/2472-0-0x0000000077D02000-0x0000000077D03000-memory.dmp

Filesize
4KB

Download
memory/2472-4-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download