Overview

overview

7

Static

static

7

6d179181ab...cs.exe

windows7-x64

7

6d179181ab...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    128s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/05/2024, 01:28

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6d179181ab2a55e504bad8f0fdfc95b0_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    6d179181ab2a55e504bad8f0fdfc95b0

  • SHA1

    55c64240a082abd59ba1f3b7f015d02f1cf35626

  • SHA256

    daecbf377229d4fa1c84c1b2df48356084cdb9add2a119fdd4d9075a1c666e7e

  • SHA512

    6defea91c5be6d06a90b0d858a7c680ac29b9a9d8e8b0f0a6166940f481791588c59c4f413538876fcfc11fef63d8b6c166020600bbd2cd9040fa51f156ba1e2

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+aK:LJ0TAz6Mte4A+aaZx8EnCGVua

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\6d179181ab2a55e504bad8f0fdfc95b0_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\6d179181ab2a55e504bad8f0fdfc95b0_NeikiAnalytics.exe"
    1⤵
      PID:3504
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=3236,i,16488180140590516186,11762960689811837350,262144 --variations-seed-version --mojo-platform-channel-handle=3840 /prefetch:8
      1⤵
        PID:4832

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • C:\Users\Admin\AppData\Local\Temp\rifaien2-ayWXgcFWTMvFDsOa.exe
              Filesize

              83KB

              MD5

              b9f88bbd4d25aec9868bfcb06e9a6bd4

              SHA1

              71897bc98b5633ed4436bd5f55c8780a2e38d028

              SHA256

              14c31083424d9f0a22fa9b18b44ba02d6c4923c44ae2f86a8a419dfdd18c039c

              SHA512

              61998913fc455ecf5bde25055880966cb1dbaad901ec8d5fc50fb30cb730aaab73198241b3a203dcff47bf345567eccc273bd765cb8ea6a7d4c0d83abc780eb5

              Download Submit

            • memory/3504-0-0x0000000000400000-0x000000000042A000-memory.dmp

              Filesize

              168KB

              Download

            • memory/3504-1-0x0000000000400000-0x000000000042A000-memory.dmp

              Filesize

              168KB

              Download

            • memory/3504-7-0x0000000000400000-0x000000000042A000-memory.dmp

              Filesize

              168KB

              Download

            • memory/3504-14-0x0000000000400000-0x000000000042A000-memory.dmp

              Filesize

              168KB

              Download

            • memory/3504-21-0x0000000000400000-0x000000000042A000-memory.dmp

              Filesize

              168KB

              Download

            • memory/3504-28-0x0000000000400000-0x000000000042A000-memory.dmp

              Filesize

              168KB

              Download