Overview

overview

1

Static

static

1

0725d55786...cs.dll

windows7-x64

1

0725d55786...cs.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    108s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-05-2024 17:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0725d5578611e1904fd80f73607f3cd0_NeikiAnalytics.dll

  • Size

    485KB

  • MD5

    0725d5578611e1904fd80f73607f3cd0

  • SHA1

    821a86ea4b9493e9ebfb9898321f2aaadf4e1f75

  • SHA256

    46f84ec0c7af5939b4cb520dd481c445950358e5c69f7c50aa5daee9b707c062

  • SHA512

    3593a485c5cf6723f1cc4bde32455a8b1087279f441c77334f5086b9a78bb80f1e10e51f2e72260684c07682974b10264a14e681a03948f147832632c32d48cf

  • SSDEEP

    3072:PR4cIEcw0pbWAl3E6aBDpMc/bSeU/1UpDpaJYltgY1KKhv+iaZkepvxQ:ucIEcw0tWAO3DpMc/bSP1yDiXLQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 16 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\0725d5578611e1904fd80f73607f3cd0_NeikiAnalytics.dll,#1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2856-0-0x00007FFA85130000-0x00007FFA85131000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2856-1-0x00007FFA86240000-0x00007FFA86241000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2856-2-0x00007FFA85140000-0x00007FFA85141000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2856-3-0x00007FFA86250000-0x00007FFA86251000-memory.dmp

    Filesize

    4KB

    Download