Overview

overview

7

Static

static

7

0cfacd5120...cs.exe

windows7-x64

7

0cfacd5120...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-05-2024 06:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cfacd5120286b970114159dd5fd720dbbff2753cfc00c9f82ebc30838563b88_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    77e66215f0d0ac4f4610d9b16bd47570

  • SHA1

    4e7f8bd48ecd38dba4a7496546e9447ea90ffbc7

  • SHA256

    0cfacd5120286b970114159dd5fd720dbbff2753cfc00c9f82ebc30838563b88

  • SHA512

    b5c30eeafdb59ed890bb210f425d132a821587bfc6cd393db060bc587e6662ae440c573add4ced52f043a20e87212ba43dca46bbeaa3ed29c627fc557c9b0970

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+FK:LJ0TAz6Mte4A+aaZx8EnCGVuF

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\0cfacd5120286b970114159dd5fd720dbbff2753cfc00c9f82ebc30838563b88_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\0cfacd5120286b970114159dd5fd720dbbff2753cfc00c9f82ebc30838563b88_NeikiAnalytics.exe"
    1⤵
      PID:2216

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\rifaien2-9XJRTt54Wat3RyF1.exe
      Filesize

      83KB

      MD5

      d7c8b7ff4b0ae17139b6479e25c8faac

      SHA1

      53989861da3175f7a2db72d07641d4eea1795867

      SHA256

      0a920818e2b8b855d092e09ff68865c9abfcf28cbfa9289fa04099a418d20cec

      SHA512

      0881ab5ae67f88b469052ceb294ba50c91f51f8366bc8862357526916be3e851ad259b5e5e50ac3f9b7eaf9b25271d45bc25f3637f67a5b343448c7e38982a37

      Download Submit

    • memory/2216-0-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2216-1-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2216-7-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2216-14-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2216-21-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2216-28-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download