Overview

overview

7

Static

static

7

3afe729630...cs.exe

windows7-x64

7

3afe729630...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    141s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21/05/2024, 10:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3afe7296305ad45af12c2c8497483200c59d9794cbefc4cd8de584b9f4058948_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    bc354817faebff9aea0a05f7d44471a0

  • SHA1

    f7201efc578a278e7842d5e4924b4ac6be5a6aec

  • SHA256

    3afe7296305ad45af12c2c8497483200c59d9794cbefc4cd8de584b9f4058948

  • SHA512

    4dec684c057cd4f33bafdafa0bb9302e1438894c68be2263b82176148702c45e4e0dd183d7557c5d7b2680d7f6385ad296b4cdf98c81375eac9c549eddc0f9da

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+hK:LJ0TAz6Mte4A+aaZx8EnCGVuh

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\3afe7296305ad45af12c2c8497483200c59d9794cbefc4cd8de584b9f4058948_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\3afe7296305ad45af12c2c8497483200c59d9794cbefc4cd8de584b9f4058948_NeikiAnalytics.exe"
    1⤵
      PID:4264

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\rifaien2-HY2D9nLzq87xKePG.exe
      Filesize

      83KB

      MD5

      2dad7bec57c2e80435540380344f73c7

      SHA1

      ad943d72a8e0df638f29288e5021202c36202ccc

      SHA256

      463bb8c99067373fa9a2d8bbcea5721b4dc4b9273a268e1c34939a2a1e651876

      SHA512

      7aa99c14b42993eb0bbaaf17bcdccce59eb35acb80b835b3d6036eea26552e094a9ef42261222a2658d30fdcf5eecc354a84e98f04f8744dc857336b3b0669fe

      Download Submit

    • memory/4264-0-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4264-1-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4264-7-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4264-14-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4264-21-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4264-28-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download