Overview

overview

7

Static

static

3

7143c4d740...cs.exe

windows7-x64

7

7143c4d740...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 01:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7143c4d740f5db84fed32e61ea58e4a0_NeikiAnalytics.exe

  • Size

    74KB

  • MD5

    7143c4d740f5db84fed32e61ea58e4a0

  • SHA1

    400f7d6a8fd56c1ef930e485e8bc714c8bf9e300

  • SHA256

    1bb0a4313589028aea143a9a10600715cc7682cfcd70be63f7841e5a9f26f559

  • SHA512

    8485089ea83a9209d6dd295a3af69fde0bcb0e910769dcf41cac3045f70e630d950f93218ba50c56ed25f323feb7f5aecc781a6465e10592382ed821dbeaba3b

  • SSDEEP

    1536:1/5eSd2CGilFul/vKVjb/uNf5Nf8kuHPvIRgHq7ee0:LDavcbUZ8trKD0

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7143c4d740f5db84fed32e61ea58e4a0_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\7143c4d740f5db84fed32e61ea58e4a0_NeikiAnalytics.exe"
    1⤵
    • Loads dropped DLL
    • Drops file in System32 directory
    PID:2168
    • C:\Windows\SysWOW64\odxeafef-oumur.exe
      "C:\Windows\SysWOW64\odxeafef-oumur.exe"
      2⤵
      • Executes dropped EXE
      PID:2040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Windows\SysWOW64\odxeafef-oumur.exe
    Filesize

    70KB

    MD5

    4b46688a13724e2d8b0f59b00b18d116

    SHA1

    5f4b5dcbd39c12f688bdf0a5cb427eb3a057becb

    SHA256

    701086ea02be32e1bb359ba0049a9a5ef86d3082d5087fda035526b45dd8bc83

    SHA512

    b177544b9c82eda9b5bbe7fc6b55cbe9a6fea30a940ac629771ba90f694b6cbaa4e5fe26ba656ca2c48fbcc8d56b44021db3ab7db50f52b262a7a9cc5257afa5

    Download Submit
  • memory/2168-5-0x0000000000400000-0x0000000000403000-memory.dmp
    Filesize

    12KB

    Download