Overview

overview

7

Static

static

3

3312976be5...cs.exe

windows7-x64

7

3312976be5...cs.exe

windows10-2004-x64

7

$PLUGINSDIR/INetC.dll

windows7-x64

3

$PLUGINSDIR/INetC.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/05/2024, 23:56

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3312976be5881b387a460d9db5a59d10_NeikiAnalytics.exe

  • Size

    79KB

  • MD5

    3312976be5881b387a460d9db5a59d10

  • SHA1

    97f06be957e76b406cc87e434da2151912b8d344

  • SHA256

    b36be6dd75ae466f62a9859499240fd203365eb751962de227f11b8c35de84de

  • SHA512

    ea9b1732b66642618e5dfdea4febcef0eb5b3fea1b973e4c8f7d784dc0237376cb8d6d537c4cbe87ca2d7ae57247c10e9dc508219a0f7f68468fa1eef018301c

  • SSDEEP

    1536:bferrLkSRoe8C4UZsys0Dh1duH4Romu/Tq+5q9uL7010n6BB2FI+Plh:bfi3k+oWDBDh1duH45PCqq70+n6XLWlh

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3312976be5881b387a460d9db5a59d10_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\3312976be5881b387a460d9db5a59d10_NeikiAnalytics.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: GetForegroundWindowSpam
    PID:808

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\nsi195B.tmp\nsDialogs.dll
          Filesize

          9KB

          MD5

          1d8f01a83ddd259bc339902c1d33c8f1

          SHA1

          9f7806af462c94c39e2ec6cc9c7ad05c44eba04e

          SHA256

          4b7d17da290f41ebe244827cc295ce7e580da2f7e9f7cc3efc1abc6898e3c9ed

          SHA512

          28bf647374b4b500a0f3dbced70c2b256f93940e2b39160512e6e486ac31d1d90945acecef578f61b0a501f27c7106b6ffc3deab2ec3bfb3d9af24c9449a1567

          Download Submit