6787be54c7a16e96d14dbabc0946672b482d4be108a6a466046b305b1e40cc59

Analysis

max time kernel
117s
max time network
118s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
14-05-2024 23:21

Target

4185104aa46bcde92152acdd44902200_NeikiAnalytics.exe
Size

73KB
MD5

4185104aa46bcde92152acdd44902200
SHA1

cdee1f2f097f6c61e32288b6b752e16c67f34992
SHA256

6787be54c7a16e96d14dbabc0946672b482d4be108a6a466046b305b1e40cc59
SHA512

87509a6f4a760fd8b5bd20d7e1fbaddf0ebd86621b1a3a0a39edab86deddbc783f7095eb1e32d5e32caa2f6ae3b5166c9931c73c1d1e7206429e9d68ee07134c
SSDEEP

1536:1y9REHv+R1IFVTvutLebJI6n9IRw4VXFLM1Nw:YO27SV4s5xMabw

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
2180	udxitead-oxur.exe

Loads dropped DLL 1 IoCs

pid	Process
2228	4185104aa46bcde92152acdd44902200_NeikiAnalytics.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\udxitead-oxur.exe	4185104aa46bcde92152acdd44902200_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\udxitead-oxur.exe	4185104aa46bcde92152acdd44902200_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\4185104aa46bcde92152acdd44902200_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\4185104aa46bcde92152acdd44902200_NeikiAnalytics.exe"
1⤵
- Loads dropped DLL
- Drops file in System32 directory
PID:2228
- C:\Windows\SysWOW64\udxitead-oxur.exe
  "C:\Windows\SysWOW64\udxitead-oxur.exe"
  2⤵
  - Executes dropped EXE
  PID:2180

\Windows\SysWOW64\udxitead-oxur.exe

Filesize
70KB

MD5
679d36ea51d32137e90e1de7c0f33fc9

SHA1
ad0809927095969241b65fe6c61930168c148aff

SHA256
9e1403dbe7cd0a70ad9c770483aa64776826fc8abce7d98e089dfbc65d4eaf53

SHA512
85f1bc36b89e11060f5d415b9276284385dbd54feba513707eccb9cc7342f2156077d2646fedba51075e2cfa0b1928e7eff96bf7623263a69a97a07ca1111331

Download Submit
memory/2228-5-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download