45be21c822d80c5ed63b6d4ed91dcfd08ac9a77f23a6326d95835b6f03c1b4da

Analysis

max time kernel
130s
max time network
101s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
12/05/2024, 20:26

Target

54dac5239ac32479f2c0388c7a54c570_NeikiAnalytics.exe
Size

74KB
MD5

54dac5239ac32479f2c0388c7a54c570
SHA1

770fecb71d33042ac83358b6b495a26f3c0167fd
SHA256

45be21c822d80c5ed63b6d4ed91dcfd08ac9a77f23a6326d95835b6f03c1b4da
SHA512

bbaf2ad922906a994c33d8f1590a349eea2d7627f6951dd88316de6b4815b7678f55ccbe287ff47bf6a5bbffd54809be9f5ae2f834125b18e72274bfeeecb2d9
SSDEEP

1536:1v1Po/bQ+2Ovwd7o7mUj2JB1I32MZ1Rb/NW/Cxjtme1MeYn:t1PoTQ+2Ovwd7o7m02z1I32MnRzqIf1I

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
3164	odpitak-oumum.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\odpitak-oumum.exe	54dac5239ac32479f2c0388c7a54c570_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\odpitak-oumum.exe	54dac5239ac32479f2c0388c7a54c570_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\54dac5239ac32479f2c0388c7a54c570_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\54dac5239ac32479f2c0388c7a54c570_NeikiAnalytics.exe"
1⤵
- Drops file in System32 directory
PID:2280
- C:\Windows\SysWOW64\odpitak-oumum.exe
  "C:\Windows\SysWOW64\odpitak-oumum.exe"
  2⤵
  - Executes dropped EXE
  PID:3164

C:\Windows\SysWOW64\odpitak-oumum.exe

Filesize
71KB

MD5
1c40030d1effca4cfaec81ba86374e7c

SHA1
05ee2412ce99a061123dfbf39d045157b17de5ea

SHA256
a26a4424a385d84feb41db442547c980b7a4cbae84c9d894b7c4f00a6f097a06

SHA512
0c243dad4247edcefd01d99bbab67c12baf5c84b0562d3616922a1b88be619a2a53621c9c80f400098d2f7a7d7763fe5fd038a62e07aebf9f2979b2865915ace

Download Submit
memory/2280-3-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download