39c467554a5005c87f5b4c41215e469e7f1285e7b877376e2da3170e8e13afef

Analysis

max time kernel
24s
max time network
150s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
23-05-2024 03:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
Size

1.1MB
MD5

828562b4fd7b9418420a5cc76a8b1050
SHA1

306ad22ea8f583f3516a44052d0547ad3d2d41e0
SHA256

39c467554a5005c87f5b4c41215e469e7f1285e7b877376e2da3170e8e13afef
SHA512

2f53c44fb26216fae231126828aeaec44f5d48c5295507b447cb534bdb3534a9d3d7e4114d953bc52dbb25c57b4dd4b273e1adf67a1a778e6b212e93cdc94287
SSDEEP

24576:lq8rn2WkudS/gic0vKNuWviq84MV/ZobLd3eBKyX:T0qSPe8ii34MVSbJMK6

Score

7^/10

persistence spyware stealer

Malware Config

Signatures

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

Processes:

828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

description	ioc	process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\mssrv32 = "C:\\Windows\\mssrv.exe"	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

Enumerates connected drives 3 TTPs 23 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

Processes:

828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

description	ioc	process
File opened (read-only)	\??\Z:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\K:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\U:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\I:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\L:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\M:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\S:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\Y:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\B:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\G:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\H:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\N:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\O:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\P:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\Q:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\V:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\A:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\E:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\W:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\X:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\T:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\J:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File opened (read-only)	\??\R:	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

Drops file in System32 directory 10 IoCs

Processes:

828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

description	ioc	process
File created	C:\Windows\SysWOW64\config\systemprofile\bukkake public titts sweet (Ashley,Melissa).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\System32\DriverStore\Temp\german gang bang lesbian glans (Kathrin,Sandy).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\FxsTmp\black bukkake catfight (Sandy,Liz).rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\indian sperm gang bang big .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\german beastiality hot (!) 40+ (Sonja,Sandy).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\IME\shared\asian cum public sm .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\System32\LogFiles\Fax\Incoming\spanish gay nude masturbation cock .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\config\systemprofile\lesbian [bangbus] sweet .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\FxsTmp\italian porn sperm catfight ìï .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SysWOW64\IME\shared\russian horse licking feet sweet (Liz).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

Drops file in Program Files directory 15 IoCs

Processes:

828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

description	ioc	process
File created	C:\Program Files (x86)\Google\Update\Download\action licking .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\black animal big lady (Christine).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files\Common Files\Microsoft Shared\fetish hot (!) titts .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files\Windows Sidebar\Shared Gadgets\chinese bukkake public .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Common Files\microsoft shared\handjob sleeping .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files\DVD Maker\Shared\spanish kicking blowjob [free] nipples (Sandy,Samantha).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Google\Temp\german animal kicking masturbation lady .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\animal bukkake sleeping nipples penetration (Samantha).rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Microsoft Office\Templates\handjob [milf] glans latex .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\sperm public 40+ .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\asian fetish girls gorgeoushorny .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Windows Sidebar\Shared Gadgets\blowjob several models .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files\Windows Journal\Templates\swedish handjob fetish catfight black hairunshaved (Sarah,Melissa).rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\DocumentShare\indian trambling action girls .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Program Files (x86)\Microsoft Office\Office14\Groove\XML Files\Space Templates\action voyeur vagina castration .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

Drops file in Windows directory 64 IoCs

Processes:

828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

description	ioc	process
File created	C:\Windows\winsxs\amd64_microsoft-windows-sharedfolders-adm_31bf3856ad364e35_6.1.7600.16385_none_af6f98ff87b0e3cc\swedish hardcore gang bang [milf] (Britney).zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_netfx-aspnet_installsqlstatetemp_b03f5f7f11d50a3a_6.1.7600.16385_none_16a2bb1dbab1c595\chinese fucking lesbian .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_netfx-shared_registry_whidbey_31bf3856ad364e35_6.1.7600.16385_none_c26c5b8280c6af34\asian horse voyeur .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Templates\british lingerie [bangbus] boobs .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\ServiceProfiles\LocalService\Downloads\norwegian gang bang lesbian .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Templates\hardcore fetish masturbation stockings .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_2fc4a33adb648f33\porn porn lesbian boobs 40+ .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-p2p-pnrp-adm.resources_31bf3856ad364e35_6.1.7600.16385_de-de_e30b5ec05031d17d\beastiality masturbation boobs .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp\nude sperm masturbation .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_00225053e03f4c04\brasilian lesbian cumshot [milf] black hairunshaved .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_es-es_00bfb7e81e458178\spanish xxx handjob sleeping (Anniston).zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-p2p-pnrp-adm.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_bacc7ceffc55dca2\danish handjob horse public swallow (Sonja,Curtney).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\Downloaded Program Files\japanese gay masturbation (Kathrin,Liz).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\ServiceProfiles\NetworkService\Downloads\japanese horse sleeping .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\SoftwareDistribution\Download\brasilian horse beastiality voyeur .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-p..al-securitytemplate_31bf3856ad364e35_6.1.7600.16385_none_49dd84a06c7c8863\horse sleeping feet 40+ .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-p2p-pnrp-adm.resources_31bf3856ad364e35_6.1.7600.16385_en-us_8bfc34b93f0fdd42\french kicking xxx full movie ash girly .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_ad7c61fb28607522\kicking lesbian (Sonja).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-sharedfoldersui_31bf3856ad364e35_6.1.7600.16385_none_1412267f4b3bb985\german blowjob nude catfight cock leather .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v4.0.30319_32\Temp\lesbian blowjob [free] .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-b..-bcdtemplate-client_31bf3856ad364e35_6.1.7600.16385_none_8419660d1cc97b24\tyrkish gang bang beast [bangbus] (Sylvia).mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-d..me-eashared-coretip_31bf3856ad364e35_6.1.7601.17514_none_d81c96999f75bd77\black horse blowjob [milf] feet penetration (Sarah,Tatjana).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-iis-sharedlibraries_31bf3856ad364e35_6.1.7601.17514_none_6f0f7833cb71e18d\swedish porn uncut hotel .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared_31bf3856ad364e35_6.1.7600.16385_none_6377027f0030a06a\animal masturbation swallow .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-sx-shared_31bf3856ad364e35_6.1.7600.16385_none_9498b282333b64ec\russian blowjob beast public stockings .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-vsssystemprovider_31bf3856ad364e35_6.1.7600.16385_none_a727eb798dcfb185\malaysia handjob licking (Anniston,Anniston).rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor.Resources\gang bang catfight hotel .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-g..n-admtmpl.resources_31bf3856ad364e35_6.1.7600.16385_en-us_65b23d3c3a97bfaf\xxx hardcore girls YEâPSè& (Christine,Sylvia).zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_it-it_8d9f242de8497d58\malaysia kicking full movie hairy .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\InstallTemp\italian animal xxx hot (!) ìï .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\russian handjob voyeur hotel (Liz,Ashley).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-g..n-admtmpl.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_94828572f7ddbf0f\porn cum hot (!) nipples ash .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\security\templates\horse big swallow .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_es-es_0ac4ebfc358e5ec0\horse uncut legs shoes .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-systempropertiesremote_31bf3856ad364e35_6.1.7600.16385_none_f0ca3430257ea13f\japanese horse several models .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\tmp\french fucking hardcore [free] blondie .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\beast [free] fishy .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_it-it_ea4a469ab7713182\french gay full movie glans shoes .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-p2p-pnrp-adm.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_2e7f079c3208e549\beastiality [free] glans .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor\chinese lingerie sperm hot (!) (Kathrin,Janette).mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP6B8E.tmp\xxx [free] hairy .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_en-us_00f45b041e1e8fd3\horse trambling catfight titts shower .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-ime-eashared-ccshared_31bf3856ad364e35_6.1.7601.17514_none_34400a5790d1d336\french lesbian gay hidden .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_de-de_5803850b2f40840e\tyrkish blowjob fetish several models latex .avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft.grouppolicy.admtmpleditor_31bf3856ad364e35_6.1.7601.17514_none_39374e2435a71b47\porn cum sleeping upskirt (Anniston,Gina).mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\GAC_MSIL\Microsoft.SharePoint.BusinessData.Administration.Client.Intl\lingerie voyeur feet (Anniston).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-p2p-pnrp-adm.resources_31bf3856ad364e35_6.1.7600.16385_it-it_18a6fde3093acac7\african fucking hot (!) bedroom .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-p2p-pnrp-adm_31bf3856ad364e35_6.1.7600.16385_none_5499606faffb3f9f\russian horse catfight .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_de-de_6208b91f46896156\italian beastiality hot (!) .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_it-it_97a45841ff925aa0\american trambling [free] swallow (Britney).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\malaysia fetish beast [bangbus] wifey .rar.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5d9f7d70ed4643fd\american xxx girls pregnant .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\GAC_32\Microsoft.GroupPolicy.AdmTmplEditor\porn voyeur granny (Jenna).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\GAC_32\Microsoft.GroupPolicy.AdmTmplEditor.Resources\japanese sperm full movie .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\german fetish hidden titts (Sandy,Sylvia).mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp\brasilian beast gang bang licking femdom (Liz,Anniston).mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp\gay lesbian girls pregnant .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_de-de_b4aea777fe683838\american beast lesbian ash beautyfull .mpeg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_es-es_5d6ada54ed6d35a2\chinese fetish hidden nipples .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_8c6fc5a7aa8c435d\bukkake horse lesbian ìï (Britney).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\assembly\NativeImages_v4.0.30319_64\Temp\gay beastiality hidden .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Temporary ASP.NET Files\cumshot gang bang full movie castration .mpg.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\PLA\Templates\bukkake uncut balls .zip.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
File created	C:\Windows\winsxs\amd64_microsoft-windows-d..-ime-eashared-proxy_31bf3856ad364e35_6.1.7600.16385_none_f27c4f066f5c6701\black fetish trambling [milf] boobs (Sonja,Sonja).avi.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious behavior: EnumeratesProcesses 64 IoCs

Processes:

828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

pid	process
2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
840	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1272	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1576	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1596	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
840	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2040	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2016	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2080	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2568	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2296	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1204	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
580	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
596	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1272	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2316	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1596	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1016	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1576	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
840	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
760	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2348	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2348	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2016	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2016	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2824	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2824	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2040	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2040	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2080	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2080	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1888	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
1888	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
3020	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
3020	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe

Suspicious use of WriteProcessMemory 64 IoCs

Processes:

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
1⤵
- Adds Run key to start application
- Enumerates connected drives
- Drops file in System32 directory
- Drops file in Program Files directory
- Drops file in Windows directory
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2072

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2704

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1764

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:840

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1272

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
- Suspicious behavior: EnumeratesProcesses
PID:1204

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:1604

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:3420

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:5556

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
10⤵
PID:11032

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
10⤵
PID:8980

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:8644

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:1500

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:4696

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:9148

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:17160

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:6976

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:20216

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:11268

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:19004

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:3476

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:5892

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:11080

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:20224

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:9140

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:16432

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:4816

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:8536

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:18476

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:7148

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11540

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11908

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:2756

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:3468

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:5684

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:10804

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:15168

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:7656

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:14980

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:14128

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:4804

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:8768

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:18796

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:7136

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11532

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14876

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3544

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:5964

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:11424

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:16496

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9200

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:17220

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4896

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8744

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:17064

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6328

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14152

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:16632

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
- Suspicious behavior: EnumeratesProcesses
PID:2316

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:2620

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:3912

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:6424

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:14296

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:14104

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:11132

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:17968

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:5364

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:11212

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:18460

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8344

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:18604

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3752

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:5196

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:16948

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9268

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:17404

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4400

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11048

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:1600

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7632

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:12216

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14696

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:2152

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:2404

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:7068

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:6528

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11304

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14852

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:5628

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11440

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:15996

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7488

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11220

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3272

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3820

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6264

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:9332

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:17384

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5156

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11116

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18452

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7732

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14304

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:944

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:13696

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:15900

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1576

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
- Suspicious behavior: EnumeratesProcesses
PID:580

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:2548

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:3596

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:5984

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:11408

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:12292

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:9192

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:18500

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:4936

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:8728

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:16440

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6892

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9568

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6484

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3536

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6016

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:14288

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8848

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14180

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4908

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9004

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14456

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6388

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14136

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:16032

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:2668

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4000

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6692

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:6660

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11188

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:2812

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:5456

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11276

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:4192

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8556

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11500

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8972

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3652

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:5216

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:19996

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8788

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18564

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4968

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:9220

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4008

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6656

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14188

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:16672

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1016

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:2732

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4180

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6820

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:13208

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14200

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14636

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:5716

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14280

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14740

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8804

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18524

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3828

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6316

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6416

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:9380

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:20020

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5172

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8880

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18516

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7716

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:16940

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14464

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14836

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:2692

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4148

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7172

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8540

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11508

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:15144

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5704

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:9292

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:18788

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3840

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6172

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:9516

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:19092

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5204

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8672

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:17708

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:7724

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:14624

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2168

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:2040

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
- Suspicious behavior: EnumeratesProcesses
PID:2348

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:1188

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:4308

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:8328

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:4536

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6348

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:14208

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9372

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:20192

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3936

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6496

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9480

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:18436

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:5384

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11204

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:18996

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8476

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18540

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:1964

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4460

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9012

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14768

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6756

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6408

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11260

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14452

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3968

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6520

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:15916

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11164

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:13576

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5428

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11284

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14516

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8548

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11484

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:2824

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:2144

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4544

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8628

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11556

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9044

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6868

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11172

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18988

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3988

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6748

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11244

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:15112

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5412

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11000

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:13716

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8460

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3104

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:2724

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4196

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6948

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11448

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:15904

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5644

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8812

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:18532

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3896

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6448

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:9528

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3152

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5316

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11040

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:13152

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8444

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3532

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
- Suspicious behavior: EnumeratesProcesses
PID:2296

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:920

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3124

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4812

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:10988

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8308

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7520

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11384

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:15764

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4292

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8336

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:16692

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6244

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14264

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:13600

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:9576

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:19100

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:2712

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4848

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8828

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18556

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6272

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14144

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14500

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4240

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7552

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11344

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:15908

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5372

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:324

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:9560

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8604

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:2324

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3288

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4136

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:10484

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18484

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7640

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14272

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14532

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:12232

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:16416

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4372

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8468

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:18548

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6356

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:9400

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:20208

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:1636

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4104

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8752

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14172

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:15744

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:7464

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11352

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:14600

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:4256

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8296

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:18980

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:6292

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:9544

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:8288

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1660

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1368

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1596

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
- Suspicious behavior: EnumeratesProcesses
PID:596

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:2576

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:3700

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:5436

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:18396

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:9276

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:18804

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:4120

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:7748

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
9⤵
PID:16928

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:14340

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:8888

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:7456

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11108

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:3284

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3792

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:5608

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:19472

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9284

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:18404

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4540

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8688

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11492

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7648

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14312

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:2572

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3664

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:6108

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
8⤵
PID:16960

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9132

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:18628

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4976

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8696

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14232

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6544

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11468

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3588

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6072

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14216

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:9184

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:3296

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4944

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8820

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18840

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6928

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11456

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:15440

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:760

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:2368

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4500

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:8564

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11548

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:14676

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6772

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11368

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14612

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3976

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6668

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:16420

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11196

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18444

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5444

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11096

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:20168

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8636

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11564

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:15912

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:1648

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4576

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:9032

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:2280

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6880

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:19464

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11392

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14432

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3944

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6548

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14256

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:15940

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11148

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:13740

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5404

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11008

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:18468

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8872

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:18572

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
- Suspicious behavior: EnumeratesProcesses
PID:2080

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1888

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3224

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4656

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:11124

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:19012

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7508

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11320

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:13428

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4360

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8436

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:18612

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6368

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:9496

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:1416

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:2356

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4520

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:9020

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14364

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6764

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11360

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:15580

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3960

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6852

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11180

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:18596

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5392

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11088

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14604

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8356

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:18492

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:2112

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3264

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4652

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:9416

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:20160

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7532

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11328

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14540

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4352

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8312

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:16688

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6400

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:9536

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:20200

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:916

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4588

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8960

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:17168

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6896

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11376

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:932

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:3604

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6444

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11476

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:15032

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:5936

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11416

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:15000

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:9172

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:17056

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2160

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
- Suspicious behavior: EnumeratesProcesses
PID:2016

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1160

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:2416

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:4668

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:9164

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:18580

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7044

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11296

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:16272

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4124

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:6788

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14160

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:16648

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6032

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14248

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:15880

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8796

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:18384

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:2604

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3784

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:7016

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
7⤵
PID:19608

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11336

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:14092

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:5720

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11432

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:12424

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7480

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11312

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:13796

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3924

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:6576

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:13560

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11156

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11952

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5376

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11024

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:13544

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8452

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:18972

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:1308

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3088

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:4300

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11072

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8400

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7796

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14320

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4272

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7848

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:12224

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:12120

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6224

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:9472

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:17396

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:276

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4616

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:8864

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11524

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14488

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6920

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11236

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:14084

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:4068

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6796

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11400

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:15884

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:5476

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11064

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:13756

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:8572

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:1732

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
- Suspicious behavior: EnumeratesProcesses
PID:2568

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:2888

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:3176

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:3856

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:11056

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
6⤵
PID:8624

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7664

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14328

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:4284

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:7740

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14356

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14552

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:6216

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:20176

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:9408

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:17368

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:2104

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5028

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:9240

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:17228

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:7436

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11140

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:15208

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:4248

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8244

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:17360

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:6276

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:17048

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:9552

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:20004

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
- Suspicious behavior: EnumeratesProcesses
PID:3020

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:3244

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:5004

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:11016

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:18424

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:7824

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:14240

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
5⤵
PID:16668

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:14224

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:4384

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8656

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:11516

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:14484

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:6376

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:9504

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:18588

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
PID:696

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:4608

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:8992

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:18812

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:6908

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
4⤵
PID:20012

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:11252

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:14440

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
PID:4024

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:6996

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:11228

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:8412

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
PID:5492

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:9592

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
3⤵
PID:4304

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
PID:8608

C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe"
2⤵
PID:18508

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\Windows Sidebar\Shared Gadgets\chinese bukkake public .avi.exe

Filesize
1.4MB

MD5
172bbf3851dd77f7cc9ea8870a2d7ef5

SHA1
f70e04e97f268c9909e0511b9c83f78ae38a1b77

SHA256
800359965642fb865e6e1cb453651bf4d17f75f38cb0b1cc5d6920bcb5283570

SHA512
380860613f83403619f34faa469c465c74e0a9b4561ba841136751e13d726a2282d520e3106446b735668a55770117f2b8a7926e4cfcf8bb9bc5ac586ce00cd1

Download Submit
memory/276-182-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/580-133-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/580-114-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/596-149-0x0000000004A90000-0x0000000004AAC000-memory.dmp

Filesize
112KB

Download
memory/596-134-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/596-115-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/596-165-0x0000000004A90000-0x0000000004AAC000-memory.dmp

Filesize
112KB

Download
memory/696-179-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/760-136-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/760-120-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/840-105-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/840-94-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/916-183-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/920-152-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1016-119-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1160-123-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1160-138-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1188-175-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1204-132-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1204-161-0x0000000004AA0000-0x0000000004ABC000-memory.dmp

Filesize
112KB

Download
memory/1204-112-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1272-113-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1308-148-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1368-107-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1576-150-0x0000000004530000-0x000000000454C000-memory.dmp

Filesize
112KB

Download
memory/1576-118-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1576-166-0x0000000004530000-0x000000000454C000-memory.dmp

Filesize
112KB

Download
memory/1596-117-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1596-100-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1604-162-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1648-181-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1660-92-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1660-103-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1764-101-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1764-93-0x00000000047B0000-0x00000000047CC000-memory.dmp

Filesize
112KB

Download
memory/1764-104-0x00000000047B0000-0x00000000047CC000-memory.dmp

Filesize
112KB

Download
memory/1888-126-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1888-143-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/1964-177-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2016-125-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2040-121-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2072-110-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2072-66-0x0000000005280000-0x000000000529C000-memory.dmp

Filesize
112KB

Download
memory/2072-308-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2072-0-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2072-102-0x00000000052E0000-0x00000000052FC000-memory.dmp

Filesize
112KB

Download
memory/2072-97-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2072-91-0x00000000052E0000-0x00000000052FC000-memory.dmp

Filesize
112KB

Download
memory/2072-98-0x0000000005280000-0x000000000529C000-memory.dmp

Filesize
112KB

Download
memory/2080-130-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2112-131-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2112-145-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2144-180-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2152-155-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2152-171-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2160-111-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2160-96-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2168-108-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2296-109-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2296-129-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2316-135-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2316-116-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2324-159-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2324-141-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2348-122-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2348-137-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2356-176-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2368-178-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2416-184-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2548-163-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2548-146-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2568-106-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2568-127-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2572-151-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2572-167-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2576-169-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2604-156-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2620-170-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2620-154-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2668-168-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2692-172-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2692-157-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2704-95-0x0000000004F10000-0x0000000004F2C000-memory.dmp

Filesize
112KB

Download
memory/2704-139-0x0000000004F20000-0x0000000004F3C000-memory.dmp

Filesize
112KB

Download
memory/2704-67-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2704-99-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2704-90-0x0000000004F10000-0x0000000004F2C000-memory.dmp

Filesize
112KB

Download
memory/2724-173-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2724-158-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2732-160-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2732-174-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2756-147-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2756-164-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2824-140-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2824-124-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/2888-153-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/3020-144-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download
memory/3020-128-0x0000000000400000-0x000000000041C000-memory.dmp

Filesize
112KB

Download

description	pid	process	target process
PID 2072 wrote to memory of 2704	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2704	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2704	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2704	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 1764	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 1764	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 1764	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 1764	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 1660	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 1660	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 1660	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 1660	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 840	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 840	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 840	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 840	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 1368	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 1368	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 1368	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 1368	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2168	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2168	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2168	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2168	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2160	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2160	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2160	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2160	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 840 wrote to memory of 1272	840	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 840 wrote to memory of 1272	840	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 840 wrote to memory of 1272	840	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 840 wrote to memory of 1272	840	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1368 wrote to memory of 1596	1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1368 wrote to memory of 1596	1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1368 wrote to memory of 1596	1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1368 wrote to memory of 1596	1368	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 1576	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 1576	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 1576	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1764 wrote to memory of 1576	1764	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2168 wrote to memory of 2040	2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2168 wrote to memory of 2040	2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2168 wrote to memory of 2040	2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2168 wrote to memory of 2040	2168	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2160 wrote to memory of 2016	2160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2160 wrote to memory of 2016	2160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2160 wrote to memory of 2016	2160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2160 wrote to memory of 2016	2160	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2568	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2568	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2568	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2072 wrote to memory of 2568	2072	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 2080	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 2080	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 2080	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1660 wrote to memory of 2080	1660	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2296	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2296	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2296	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 2704 wrote to memory of 2296	2704	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1272 wrote to memory of 1204	1272	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1272 wrote to memory of 1204	1272	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1272 wrote to memory of 1204	1272	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe
PID 1272 wrote to memory of 1204	1272	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe	828562b4fd7b9418420a5cc76a8b1050_NeikiAnalytics.exe