Overview

overview

7

Static

static

7

310cfc494c...cs.exe

windows7-x64

7

310cfc494c...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    141s
  • max time network
    122s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-05-2024 09:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    310cfc494ce6bf8e2aa00d98a90d5fabaf62b59d379948b9d62454530109d386_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    1742c1e1da8ea8024cb81f58de5e9c50

  • SHA1

    98cd8d1bd6798855b9768f0823e20c4a1a738e26

  • SHA256

    310cfc494ce6bf8e2aa00d98a90d5fabaf62b59d379948b9d62454530109d386

  • SHA512

    e8a93a0d32a12bbdab79f1b135d8c1843ea8138537ed5a80f1817096d2bc41462acd57ff6438d0dda797bb1544f6aac1b13e722c5adef63065974e2d7f499e2b

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+wK:LJ0TAz6Mte4A+aaZx8EnCGVuw

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\310cfc494ce6bf8e2aa00d98a90d5fabaf62b59d379948b9d62454530109d386_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\310cfc494ce6bf8e2aa00d98a90d5fabaf62b59d379948b9d62454530109d386_NeikiAnalytics.exe"
    1⤵
      PID:980

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\rifaien2-RDKwVvEzMrjNGdMC.exe
      Filesize

      83KB

      MD5

      745643042ddabd3760aff8d4d91ca924

      SHA1

      6329a63e4211f24f772365c0470c0cee213a6cb1

      SHA256

      caa713dd9a99a6f46103d9ec3a94dc32502a4d32bd17c8b9245914491d2dad25

      SHA512

      44f213029c22b46bffce2a6e917f3df81970d3b523fec379c20c2e105bb6b290655967772f9f4f3d07f163cb9638d0a54e88152d0f1cb4313710133c9b7b24d8

      Download Submit

    • memory/980-0-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/980-1-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/980-7-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/980-14-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/980-21-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/980-28-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download