Overview

overview

7

Static

static

7

6d179181ab...cs.exe

windows7-x64

7

6d179181ab...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    128s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-05-2024 01:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6d179181ab2a55e504bad8f0fdfc95b0_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    6d179181ab2a55e504bad8f0fdfc95b0

  • SHA1

    55c64240a082abd59ba1f3b7f015d02f1cf35626

  • SHA256

    daecbf377229d4fa1c84c1b2df48356084cdb9add2a119fdd4d9075a1c666e7e

  • SHA512

    6defea91c5be6d06a90b0d858a7c680ac29b9a9d8e8b0f0a6166940f481791588c59c4f413538876fcfc11fef63d8b6c166020600bbd2cd9040fa51f156ba1e2

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+aK:LJ0TAz6Mte4A+aaZx8EnCGVua

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\6d179181ab2a55e504bad8f0fdfc95b0_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\6d179181ab2a55e504bad8f0fdfc95b0_NeikiAnalytics.exe"
    1⤵
      PID:3504
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=3236,i,16488180140590516186,11762960689811837350,262144 --variations-seed-version --mojo-platform-channel-handle=3840 /prefetch:8
      1⤵
        PID:4832

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • C:\Users\Admin\AppData\Local\Temp\rifaien2-ayWXgcFWTMvFDsOa.exe
        Filesize

        83KB

        MD5

        b9f88bbd4d25aec9868bfcb06e9a6bd4

        SHA1

        71897bc98b5633ed4436bd5f55c8780a2e38d028

        SHA256

        14c31083424d9f0a22fa9b18b44ba02d6c4923c44ae2f86a8a419dfdd18c039c

        SHA512

        61998913fc455ecf5bde25055880966cb1dbaad901ec8d5fc50fb30cb730aaab73198241b3a203dcff47bf345567eccc273bd765cb8ea6a7d4c0d83abc780eb5

        Download Submit

      • memory/3504-0-0x0000000000400000-0x000000000042A000-memory.dmp

        Filesize

        168KB

        Download

      • memory/3504-1-0x0000000000400000-0x000000000042A000-memory.dmp

        Filesize

        168KB

        Download

      • memory/3504-7-0x0000000000400000-0x000000000042A000-memory.dmp

        Filesize

        168KB

        Download

      • memory/3504-14-0x0000000000400000-0x000000000042A000-memory.dmp

        Filesize

        168KB

        Download

      • memory/3504-21-0x0000000000400000-0x000000000042A000-memory.dmp

        Filesize

        168KB

        Download

      • memory/3504-28-0x0000000000400000-0x000000000042A000-memory.dmp

        Filesize

        168KB

        Download