Overview

overview

7

Static

static

7

8a84d61858...cs.exe

windows7-x64

7

8a84d61858...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20/05/2024, 02:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    8a84d618585082633ea820431f3457b0_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    8a84d618585082633ea820431f3457b0

  • SHA1

    e861bf6bbf0a4c5c0546c871086c7202cfe39bf6

  • SHA256

    f3f607b88c510aceb32e324429dbef61b7a0ef6da5b89526679a57fefb46a64b

  • SHA512

    70c8d32d9ec1dddc10a9817c426938d6bf5ce591cde798cb0d6d2d1ae0ba98fbc56d6449dd3aa48d4c3c1aecc1edbb56db4326cb736eb97d4bd64b5062b31e29

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+hK:LJ0TAz6Mte4A+aaZx8EnCGVuh

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\8a84d618585082633ea820431f3457b0_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\8a84d618585082633ea820431f3457b0_NeikiAnalytics.exe"
    1⤵
      PID:1264

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Local\Temp\rifaien2-iFOZTm5Iayck0dAd.exe
            Filesize

            83KB

            MD5

            20eab8d20eb104838e2714a2a9170107

            SHA1

            419dae1fc345469292b2893a290df2ef4dc0c873

            SHA256

            ae4c422b02e8e476b5ea67fa5073d5dd2341ee58a983aa17b3104b339cb95bef

            SHA512

            bf5dd6ee47a60dc6a6e1f855fd7b4e9e3791ae37f87ef16878c83e7072195fb8599f5b544901f6946e43919e97f363bc52d28a434cfd5893e8dcb81ce84e30f4

            Download Submit

          • memory/1264-0-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/1264-1-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/1264-7-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/1264-14-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/1264-21-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/1264-28-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download