5633ea44ab41aa1b3add6ad809c4841039c4102de24251bc83fec8b746595f1b

Analysis

max time kernel
121s
max time network
122s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
12-05-2024 17:39

Target

37673239ecc4bd6b5af3fb11a7af0160_NeikiAnalytics.exe
Size

74KB
MD5

37673239ecc4bd6b5af3fb11a7af0160
SHA1

5829fc0447bc700fc1553557090aba2897c0d7cd
SHA256

5633ea44ab41aa1b3add6ad809c4841039c4102de24251bc83fec8b746595f1b
SHA512

65b060f1959f2b0a7f332257ef5229803fd1387eaf5f91756c4edaf26d1cb814eb16cd87fed85eb9061ac2bd9c0f5e9c5f3adf459b663b89b003e9b8d2bca3c4
SSDEEP

1536:1v1Po/bQ+2Ovwd7o7mUj2JB1I32MZ1Rb/NW/Cxjtme1Me6C:t1PoTQ+2Ovwd7o7m02z1I32MnRzqIf1v

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
1248	utvuroan-egeas.exe

Loads dropped DLL 1 IoCs

pid	Process
2988	37673239ecc4bd6b5af3fb11a7af0160_NeikiAnalytics.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\utvuroan-egeas.exe	37673239ecc4bd6b5af3fb11a7af0160_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\utvuroan-egeas.exe	37673239ecc4bd6b5af3fb11a7af0160_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\37673239ecc4bd6b5af3fb11a7af0160_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\37673239ecc4bd6b5af3fb11a7af0160_NeikiAnalytics.exe"
1⤵
- Loads dropped DLL
- Drops file in System32 directory
PID:2988
- C:\Windows\SysWOW64\utvuroan-egeas.exe
  "C:\Windows\SysWOW64\utvuroan-egeas.exe"
  2⤵
  - Executes dropped EXE
  PID:1248

\Windows\SysWOW64\utvuroan-egeas.exe

Filesize
70KB

MD5
aec234f540359ed8f6ec6b9b974a441c

SHA1
49207273f32d49d481f677f7177bde268ef17ac2

SHA256
cbd934dadb3fe88e60b32a1974cc92cdd6b463626c9bf73eff1e5ae859a67081

SHA512
a062d336a5d8a39c4a04f0d1d5295b268558327ae8b2119dfd9040a87892682fcf541ec5621038be3c64ddd3dc1dfbcd6425f9648a98dc697ef471aad523fd0d

Download Submit
memory/2988-5-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download