2ee00d73b4bb39cf9da226761a074ba9752ec5353180a5f86e15ec63242caccc

Analysis

max time kernel
149s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
09-05-2024 17:12

Target

a14beb0767b4f9f6a0edca5c19bd8200_NeikiAnalytics.exe
Size

73KB
MD5

a14beb0767b4f9f6a0edca5c19bd8200
SHA1

cbd9a2c4603db605054b243086cecbb843914f71
SHA256

2ee00d73b4bb39cf9da226761a074ba9752ec5353180a5f86e15ec63242caccc
SHA512

2081e5cde3c8dc2c5a5f4a8eff33b6024f8d478eb7d0fb6859ba499a54f365d6872734c1a48c0ec13204090c9fd5c3463ef7d8451f2974b928528054881ac88d
SSDEEP

1536:1K7QGVjigzirGfbTjJTASbe+04zwHSoMU3k0A8Boq76:yQG52rGfPjJTAD+048HS0k0A8Gqe

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
3456	ouhceahih.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\ouhceahih.exe	a14beb0767b4f9f6a0edca5c19bd8200_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\ouhceahih.exe	a14beb0767b4f9f6a0edca5c19bd8200_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\a14beb0767b4f9f6a0edca5c19bd8200_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\a14beb0767b4f9f6a0edca5c19bd8200_NeikiAnalytics.exe"
1⤵
- Drops file in System32 directory
PID:2472
- C:\Windows\SysWOW64\ouhceahih.exe
  "C:\Windows\SysWOW64\ouhceahih.exe"
  2⤵
  - Executes dropped EXE
  PID:3456

C:\Windows\SysWOW64\ouhceahih.exe

Filesize
70KB

MD5
4a807e87b1940d80c570498b8b916a75

SHA1
967ca382e05661bc5595cbd0f103cb4e6ff0a600

SHA256
e887043f91900d4b03eb5cb013647e3333e4e74fc0c7017bc17b98662ab7a441

SHA512
31e079a842ad441164825e8be32510c64c12fc6cf040927fac5bc6e15060de97242d32cbb5df079c85005263a240539174955a1a1548c09318042784edcbe1f0

Download Submit
memory/2472-0-0x0000000077382000-0x0000000077383000-memory.dmp

Filesize
4KB

Download
memory/2472-4-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download