aca34757eac02d9923ac45c61ef11bbda8e5fa25b3cd0c8d7d94e2de464c395b

Analysis

max time kernel
140s
max time network
124s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
09/05/2024, 20:01

Target

e493e97d081c1accd44662f67945b130_NeikiAnalytics.exe
Size

73KB
MD5

e493e97d081c1accd44662f67945b130
SHA1

e1f3314b10a3e7480fd4014763cc0f9878137ad6
SHA256

aca34757eac02d9923ac45c61ef11bbda8e5fa25b3cd0c8d7d94e2de464c395b
SHA512

5fbd734e759527188d1e0654211bd4fedf8983a01196e0feaf2ee65e6e71229c3145fc73d005afb0c41818af62bf8416946c375536c17743cb9beb2081f816e5
SSDEEP

1536:10Qy//HYGZ75/51cnN/sTJMj+wiOAQYcnKfJYA4:fy//d5/514N/QKjiOAjRj4

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
2928	outnoamom-ougeab.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\outnoamom-ougeab.exe	e493e97d081c1accd44662f67945b130_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\outnoamom-ougeab.exe	e493e97d081c1accd44662f67945b130_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\e493e97d081c1accd44662f67945b130_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\e493e97d081c1accd44662f67945b130_NeikiAnalytics.exe"
1⤵
- Drops file in System32 directory
PID:4056
- C:\Windows\SysWOW64\outnoamom-ougeab.exe
  "C:\Windows\SysWOW64\outnoamom-ougeab.exe"
  2⤵
  - Executes dropped EXE
  PID:2928

C:\Windows\SysWOW64\outnoamom-ougeab.exe

Filesize
70KB

MD5
67a5b77f943a02bbc058625057725f5b

SHA1
c22ff285c2fdac60184d2d2f3c03e85899f70b9b

SHA256
04348d2507bc7ca28f6f8c6823567492b794a90299f95c40de595f25c755a7a5

SHA512
f092258cb988ae25652d56ca99655b965741b2b206f016fe4c7250e38f54e00739ff9b37621be207d48f62d400f5e9bab37900b12105017ac197468aa9659a2e

Download Submit
memory/4056-4-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download
memory/4056-2-0x0000000077E72000-0x0000000077E73000-memory.dmp

Filesize
4KB

Download