b26a590383de497a160be54dde52878a38b8429833b0d96b1bc599a1459a5909

Analysis

max time kernel
122s
max time network
122s
platform
windows7_x64
resource
win7-20240215-en
resource tags

arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
submitted
16/05/2024, 02:40

Target

82d271d3eb9b0763b411868cef82ceb0_NeikiAnalytics.exe
Size

74KB
MD5

82d271d3eb9b0763b411868cef82ceb0
SHA1

bd851f9f9e72c8c3023844600ec49a5e9d687421
SHA256

b26a590383de497a160be54dde52878a38b8429833b0d96b1bc599a1459a5909
SHA512

ef1de4234d4b76b8e4cce075aef0b242cbd2bf37a8e70cfb1df1bfc5297a229f10d8e98c6c90f86840f105dc43ee095b6319c55ae75a2fe3909d1927e94823c5
SSDEEP

1536:1YF8NLCofRLCg/pdsHT+obdo8Cgzvl4ooofgke253u2D5:uF+LCofRLCgxSzXo8CgpIo53u2D5

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
2300	abkeamin.exe

Loads dropped DLL 1 IoCs

pid	Process
2220	82d271d3eb9b0763b411868cef82ceb0_NeikiAnalytics.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\abkeamin.exe	82d271d3eb9b0763b411868cef82ceb0_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\abkeamin.exe	82d271d3eb9b0763b411868cef82ceb0_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\82d271d3eb9b0763b411868cef82ceb0_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\82d271d3eb9b0763b411868cef82ceb0_NeikiAnalytics.exe"
1⤵
- Loads dropped DLL
- Drops file in System32 directory
PID:2220
- C:\Windows\SysWOW64\abkeamin.exe
  "C:\Windows\SysWOW64\abkeamin.exe"
  2⤵
  - Executes dropped EXE
  PID:2300

\Windows\SysWOW64\abkeamin.exe

Filesize
70KB

MD5
4860c7dc69688906efc2e1d98f7ea7da

SHA1
2d163eb8b8f2ccc3f806eea4991cb0a2ca0bf247

SHA256
3fc27a574873ac8e6cd60680350eed3e03f469c71dc781ea765df90a706939e0

SHA512
bb5c6226947925a47c138fbdae164230d8f967f7cf721938b2b547193800977d364be60fb10d8006186ab1fcbc020112892581c6b74868c13a08dc00d329dda9

Download Submit
memory/2220-5-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download