Overview

overview

7

Static

static

7

6d983b55ad...cs.exe

windows7-x64

7

6d983b55ad...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    16/05/2024, 01:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6d983b55ad0470043b39cb249cdc2100_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    6d983b55ad0470043b39cb249cdc2100

  • SHA1

    efed49818546883daf62a54b4fb342a6533c0a48

  • SHA256

    358be16aa9df91c658b700016d945ac72a06190f764dde8b9986f3a1877768c8

  • SHA512

    36108316e33a06d55898ab10f3781011826d52ac8c3ce5a4d3b888a9f2ae82082bf8b713b069bd5f27aa06b2743b4c6cd2bfb573aaef69245b1a60e54482a6de

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+QK:LJ0TAz6Mte4A+aaZx8EnCGVuQ

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\6d983b55ad0470043b39cb249cdc2100_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\6d983b55ad0470043b39cb249cdc2100_NeikiAnalytics.exe"
    1⤵
      PID:2088

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\rifaien2-jTU5OM7u6O1st88u.exe
      Filesize

      83KB

      MD5

      ce3490f2ebe5c9ff52796270f374ff81

      SHA1

      2446e3c70ef8bab4e4eca8fbaff3f9ac311f898f

      SHA256

      d19aaa093d64aab4e8f8c468d78d8aff0469445d652c76457a8b6f3011f82be5

      SHA512

      22bf71385edc878d0892f4781cccd3ebce800949ab676f44ffe9bd0a0cb916a6c73b0a3ab4293f02a9749fef54151662efacef0ce764c979fefcef34dd81d214

      Download Submit

    • memory/2088-0-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2088-1-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2088-7-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2088-14-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2088-21-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2088-28-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download