Overview

overview

7

Static

static

3

783ffd5a86...cs.exe

windows7-x64

7

783ffd5a86...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-05-2024 02:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    783ffd5a8653a739e3ecc571bf9d0b20_NeikiAnalytics.exe

  • Size

    74KB

  • MD5

    783ffd5a8653a739e3ecc571bf9d0b20

  • SHA1

    12c20e1173a83d8df0e4b7bffa20ecb57af5ed7c

  • SHA256

    175b32eacfdcc2ef5390ddfa7529d482a29973aebe9172a8179af367251a5408

  • SHA512

    fdd08c0806154ab1940adf3f4dcb44fad735e3bfe6a44c180af9196f9e20c59ca17fa4b7fdd8312f9d4ba87fd94ab0a1d397ebcb5d20bb74462b48bdad56a8fb

  • SSDEEP

    1536:1PMoWELkdEwt74R6QJro0857l+bMxNs2QWCFu6s:tMoWKkdEi74RLo0uaumjuj

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\783ffd5a8653a739e3ecc571bf9d0b20_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\783ffd5a8653a739e3ecc571bf9d0b20_NeikiAnalytics.exe"
    1⤵
    • Drops file in System32 directory
    PID:1652
    • C:\Windows\SysWOW64\earcoaroc-agoab.exe
      "C:\Windows\SysWOW64\earcoaroc-agoab.exe"
      2⤵
      • Executes dropped EXE
      PID:2284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\earcoaroc-agoab.exe
    Filesize

    71KB

    MD5

    b22f03d7cbff409d3014621a5dd256d8

    SHA1

    9cc335eed47a891a47679eed084fb8aee7652ea4

    SHA256

    e422fd5b315389754dd58dbacf8625b009817ed33f704cd852bdc9245c097d3d

    SHA512

    cfb1edf88eaddcefdd6b3a02684b5bc8bcc55a6ca951c0b073257b65187ca20ed4ad3310778d03e47fd6a2acbd98fdb759f60f480b8789d62b30812d0b78759b

    Download Submit
  • memory/1652-3-0x0000000077E22000-0x0000000077E23000-memory.dmp
    Filesize

    4KB

    Download
  • memory/1652-4-0x0000000000400000-0x0000000000403000-memory.dmp
    Filesize

    12KB

    Download