9c6b61a75d1be00d5a55706cb0d3a434420a6b57bd985d8cbd12b6532d25c54f

Analysis

max time kernel
149s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
17/05/2024, 00:18

Target

63e2362d99f1655e1aa0af376ce8ba70_NeikiAnalytics.exe
Size

73KB
MD5

63e2362d99f1655e1aa0af376ce8ba70
SHA1

e288666d6544e194feb4ecde884d06f1c3fe4d17
SHA256

9c6b61a75d1be00d5a55706cb0d3a434420a6b57bd985d8cbd12b6532d25c54f
SHA512

a4e20a7b26a7bec5330ef0c433581f4568520e1f052b852bcc69fb0a4c3abffe48acf6ba579a5d456b2005382cfc31e0f9067422f314de84e08bf60dee25900b
SSDEEP

1536:1JGioEFhlmSUO4tss7GwZyC2LcdtdoqDbAPfMzETC7fYJJgISHgzPZydI:O8VmSB4tss7GwZyC1NZO0zH2gBoZOI

Score

7^/10

Executes dropped EXE 1 IoCs

pid	Process
4316	uppoohos-uxed.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\uppoohos-uxed.exe	63e2362d99f1655e1aa0af376ce8ba70_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\uppoohos-uxed.exe	63e2362d99f1655e1aa0af376ce8ba70_NeikiAnalytics.exe

C:\Users\Admin\AppData\Local\Temp\63e2362d99f1655e1aa0af376ce8ba70_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\63e2362d99f1655e1aa0af376ce8ba70_NeikiAnalytics.exe"
1⤵
- Drops file in System32 directory
PID:856
- C:\Windows\SysWOW64\uppoohos-uxed.exe
  "C:\Windows\SysWOW64\uppoohos-uxed.exe"
  2⤵
  - Executes dropped EXE
  PID:4316

C:\Windows\SysWOW64\uppoohos-uxed.exe

Filesize
70KB

MD5
6ea445dd9e9a7d76e81f2ee84b5ab331

SHA1
bd92245fab8a6522b6f734b05a3e149e3ded729b

SHA256
078ccd4e01079bdb14545173d60e862bca544d9217b8c4ecf80fcfdedbbac7a7

SHA512
0231f32f6875bc51f6496021ea0292917360ef7f9dde482a443abb2b7bcaa65b84c2afc49e28bfb547008d872df90b8ee656e51206ae65ef8831c63af61fa6f5

Download Submit
memory/856-3-0x0000000000400000-0x0000000000403000-memory.dmp

Filesize
12KB

Download