Overview

overview

7

Static

static

3

9419463e17...cs.exe

windows7-x64

7

9419463e17...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20/05/2024, 02:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    9419463e177151ffb784e13f183bace0_NeikiAnalytics.exe

  • Size

    74KB

  • MD5

    9419463e177151ffb784e13f183bace0

  • SHA1

    1342937815f1078aa8daa17ecacf1262d201ebc5

  • SHA256

    31e21e869ef534eecb3b9d8e5277b12440bcdffef4a006af9103cf58512dbf41

  • SHA512

    4ffd882794f2a3bbe65277a18ca952cbbc97e6b912adc6464e7d263dc54d0fcef81eb6874a07416f0b29260d7a1f58383bcd7dd3df4d34ae53a993396a37108c

  • SSDEEP

    768:hZZ6Zyf9/8AFM3YO3mqZLB0eA4Vb+O1q+AfQt295Pe0+03PHvioazoT2bxQ5Tw65:1V8acY5c0Hqb+it2zeyPioag2bxQmc

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9419463e177151ffb784e13f183bace0_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\9419463e177151ffb784e13f183bace0_NeikiAnalytics.exe"
    1⤵
    • Drops file in System32 directory
    PID:2004
    • C:\Windows\SysWOW64\osbidak.exe
      "C:\Windows\SysWOW64\osbidak.exe"
      2⤵
      • Executes dropped EXE
      PID:436

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Windows\SysWOW64\osbidak.exe
          Filesize

          70KB

          MD5

          a72a0299c2a9722cb9449f29404a3af2

          SHA1

          8cdb7eb537362786d1ff00546fc17d689417295b

          SHA256

          03b4e80d22ebb543ca12242db26800a5c608a7143c88ffce7ea488c8510856e9

          SHA512

          71813acf988d28b6aca0a4883be02b1bef4af8b053cdb9eecad99a4b115cf5addeedf877fbca0f1ad4b8a02fd32e0a309c23cdde4c31779ebff72200e79cd139

          Download Submit

        • memory/2004-2-0x0000000077462000-0x0000000077463000-memory.dmp

          Filesize

          4KB

          Download

        • memory/2004-4-0x0000000000400000-0x0000000000403000-memory.dmp

          Filesize

          12KB

          Download