Analysis
-
max time kernel
38s -
max time network
125s -
platform
windows7_x64 -
resource
win7-20240215-en -
resource tags
arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system -
submitted
01-06-2024 07:03
Behavioral task
behavioral1
Sample
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe
-
Size
196KB
-
MD5
91e9aacdc9cd30f9121243eaced08480
-
SHA1
cd3332bb55dfcdde6eff97aad799d1c0c55b95aa
-
SHA256
cfe32acde17b93a38f7c601f6c9bf0591a6812dbebb164296aead21ff4be6d7d
-
SHA512
2d859841d8ea0de3de8768bb05be912f48701a016eb72e0a126836da3d26fc047c48ce65d2eb8556cffb1c3f81380e220c41424c9f22e1dab5446d061e316c9c
-
SSDEEP
6144:CjluQoSIIo5RxX+ACs33dinSQZ1dfKaGj:CEQoSs1LxfQZ1W
Malware Config
Signatures
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Processes:
resource yara_rule behavioral1/memory/2908-0-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/files/0x0007000000016d1f-5.dat upx behavioral1/memory/1892-81-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2696-91-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1340-93-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1844-95-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1228-94-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1632-96-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/308-100-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2032-104-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2780-103-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2304-102-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2908-101-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2040-106-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2696-108-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1340-112-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2072-111-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1748-114-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1228-113-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2428-110-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2732-109-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1892-105-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1400-121-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/552-118-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1844-116-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2908-115-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2084-128-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1124-125-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1632-124-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/592-123-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1256-137-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1984-136-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/3024-135-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2940-134-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/308-133-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2040-141-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2032-140-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2780-139-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2072-143-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2304-138-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1484-142-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2948-154-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2228-153-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1748-152-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2260-150-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1532-147-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1400-159-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/552-156-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/592-161-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/760-168-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2084-165-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1124-162-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2940-169-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1552-174-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1256-173-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1984-172-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/3024-170-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1292-175-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/912-177-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1644-176-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1932-179-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2260-182-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/1532-180-0x0000000000400000-0x000000000041F000-memory.dmp upx behavioral1/memory/2672-186-0x0000000000400000-0x000000000041F000-memory.dmp upx -
Adds Run key to start application 2 TTPs 1 IoCs
Processes:
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exedescription ioc Process Set value (str) \REGISTRY\MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\mssrv32 = "C:\\Windows\\mssrv.exe" 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe -
Enumerates connected drives 3 TTPs 23 IoCs
Attempts to read the root path of hard drives other than the default C: drive.
Processes:
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exedescription ioc Process File opened (read-only) \??\Z: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\B: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\L: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\O: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\P: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\R: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\T: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\V: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\Y: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\A: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\E: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\G: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\M: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\N: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\S: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\W: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\H: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\I: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\K: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\J: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\Q: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\U: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File opened (read-only) \??\X: 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe -
Drops file in System32 directory 10 IoCs
Processes:
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exedescription ioc Process File created C:\Windows\SysWOW64\config\systemprofile\black fetish gay several models .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SysWOW64\FxsTmp\beastiality voyeur penetration (Melissa).mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\System32\LogFiles\Fax\Incoming\handjob gay hidden hairy (Britney).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\danish beastiality [bangbus] redhair .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SysWOW64\FxsTmp\animal voyeur blondie .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\chinese cumshot horse licking titts bedroom (Liz).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\System32\DriverStore\Temp\lingerie big (Jade).mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SysWOW64\IME\shared\beastiality sleeping .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SysWOW64\config\systemprofile\animal bukkake sleeping wifey (Tatjana).mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SysWOW64\IME\shared\indian lesbian licking beautyfull .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe -
Drops file in Program Files directory 15 IoCs
Processes:
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exedescription ioc Process File created C:\Program Files\DVD Maker\Shared\indian lesbian fucking sleeping bedroom .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files\Windows Journal\Templates\gang bang horse lesbian (Gina,Sonja).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Common Files\microsoft shared\japanese beastiality uncut cock femdom .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Google\Temp\action hidden (Britney).rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Microsoft Office\Office14\Groove\XML Files\Space Templates\black blowjob hidden .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Microsoft Office\Templates\danish gang bang licking nipples gorgeoushorny .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\black handjob cum several models vagina femdom .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Windows Sidebar\Shared Gadgets\sperm beast [milf] .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files\Common Files\Microsoft Shared\black gay cumshot hot (!) balls .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files\Windows Sidebar\Shared Gadgets\fucking licking shoes .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\DocumentShare\horse blowjob public feet redhair .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Google\Update\Download\japanese hardcore animal sleeping .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Microsoft Office\Office14\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\japanese trambling several models .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\indian animal several models .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\lingerie fetish sleeping boobs granny .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe -
Drops file in Windows directory 64 IoCs
Processes:
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exedescription ioc Process File created C:\Windows\winsxs\amd64_microsoft.grouppolicy.admtmpleditor_31bf3856ad364e35_6.1.7601.17514_none_39374e2435a71b47\danish bukkake [bangbus] nipples hairy .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-g..n-admtmpl.resources_31bf3856ad364e35_6.1.7600.16385_es-es_095efe9c8261401e\xxx fucking public .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\tmp\kicking beast lesbian legs traffic (Sonja,Jade).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\PLA\Templates\malaysia blowjob handjob [bangbus] ejaculation .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-d..e-eashared-kjshared_31bf3856ad364e35_6.1.7600.16385_none_3d98a610fed70b75\asian horse uncut legs (Anniston,Melissa).mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-d..me-eashared-coretip_31bf3856ad364e35_6.1.7601.17514_none_d81c96999f75bd77\horse cumshot [free] legs (Jenna,Sonja).rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-g..olicy-admin-admtmpl_31bf3856ad364e35_6.1.7601.17514_none_f3c374fc18118ca2\brasilian lesbian sleeping shoes (Jenna).mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_netfx-aspnet_installsqlstatetemp_b03f5f7f11d50a3a_6.1.7600.16385_none_5e4ff1f4cf2dee9b\canadian cumshot cum girls shoes .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-d..ime-eashared-imepad_31bf3856ad364e35_6.1.7601.17514_none_3c93ac15fd731acf\british horse beastiality sleeping (Tatjana,Tatjana).mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\russian fetish lingerie masturbation nipples sm .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_en-us_0af98f1835676d1b\blowjob girls wifey .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_netfx-shared_netfx_20_mscorwks_31bf3856ad364e35_6.1.7600.16385_none_dba3691c6002e10e\fetish blowjob [free] legs boots .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_netfx-shared_registry_whidbey_31bf3856ad364e35_6.1.7600.16385_none_664dbffec8693dfe\chinese nude fucking [bangbus] YEâPSè& .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\temp\tyrkish lesbian nude voyeur hairy (Gina,Sylvia).mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5d9f7d70ed4643fd\norwegian fucking sperm several models .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_es-es_00bfb7e81e458178\xxx voyeur (Karin,Tatjana).zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_it-it_3b85bcbe4734e96a\kicking lesbian 40+ .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_netfx-shared_netfx_20_mscorlib_b03f5f7f11d50a3a_6.1.7600.16385_none_2958d4a31d2ec64f\italian action gang bang [milf] glans black hairunshaved (Janette,Samantha).mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\british handjob animal [free] (Gina,Tatjana).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_it-it_ea4a469ab7713182\canadian trambling bukkake voyeur legs .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_netfx-aspnet_installsqlstatetemp_b03f5f7f11d50a3a_6.1.7600.16385_none_16a2bb1dbab1c595\indian lingerie cum full movie nipples (Jenna).mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_netfx-shared_netfx_20_perfcounter_31bf3856ad364e35_6.1.7600.16385_none_4d274741486b900c\brasilian lingerie sleeping shower .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\security\templates\british fucking gang bang licking .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-d..-ime-eashared-proxy_31bf3856ad364e35_6.1.7600.16385_none_f27c4f066f5c6701\asian blowjob gang bang [bangbus] young (Jenna,Melissa).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-g..n-admtmpl.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_3863e9ef3f804dd9\danish kicking animal several models glans circumcision .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\GAC_32\Microsoft.GroupPolicy.AdmTmplEditor.Resources\tyrkish porn beast uncut girly .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\SoftwareDistribution\Download\american horse beastiality [bangbus] (Melissa).rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-sharedfolders-adm_31bf3856ad364e35_6.1.7600.16385_none_af6f98ff87b0e3cc\asian lingerie blowjob big .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\russian fucking full movie nipples balls (Anniston).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-b..-bcdtemplate-client_31bf3856ad364e35_6.1.7600.16385_none_8419660d1cc97b24\african bukkake voyeur pregnant .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-systempropertiesremote_31bf3856ad364e35_6.1.7600.16385_none_f0ca3430257ea13f\malaysia cumshot porn masturbation .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-vsssystemprovider_31bf3856ad364e35_6.1.7600.16385_none_a727eb798dcfb185\brasilian gang bang handjob girls titts .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_netfx-shared_registry_whidbey_31bf3856ad364e35_6.1.7600.16385_none_c26c5b8280c6af34\italian gang bang horse lesbian feet .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-d..-ime-eashared-proxy_31bf3856ad364e35_6.1.7600.16385_none_965db382b6fef5cb\indian handjob uncut .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP6B8E.tmp\canadian nude trambling big lady (Kathrin).rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-g..n-admtmpl.resources_31bf3856ad364e35_6.1.7600.16385_it-it_f25d066604c2ad34\action [free] latex .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_2fc4a33adb648f33\beast action public redhair .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-p2p-pnrp-adm.resources_31bf3856ad364e35_6.1.7600.16385_en-us_8bfc34b93f0fdd42\animal licking balls .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\wow64_microsoft-windows-sharedaccess_31bf3856ad364e35_6.1.7600.16385_none_6b16fa9f975e1109\lesbian big pregnant (Sylvia).mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_netfx-shared_netfx_20_mscorwks_31bf3856ad364e35_6.1.7600.16385_none_7f84cd98a7a56fd8\sperm bukkake [free] hole .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\NativeImages_v4.0.30319_32\Temp\gay cumshot full movie legs balls .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-ime-eashared-ccshared_31bf3856ad364e35_6.1.7601.17514_none_34400a5790d1d336\cumshot nude licking femdom .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared_31bf3856ad364e35_6.1.7600.16385_none_6377027f0030a06a\russian horse blowjob sleeping nipples shoes .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\cumshot cum hot (!) boobs gorgeoushorny .mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-iis-sharedlibraries_31bf3856ad364e35_6.1.7601.17514_none_6f0f7833cb71e18d\malaysia handjob full movie nipples YEâPSè& .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor.Resources\lesbian bukkake lesbian nipples YEâPSè& .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Templates\animal licking circumcision .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_en-us_00f45b041e1e8fd3\malaysia trambling full movie cock .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_39c9d74ef2ad6c7b\trambling hot (!) nipples penetration (Britney,Christine).rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_it-it_8d9f242de8497d58\indian beastiality action big latex (Liz).mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-sharedfoldersui_31bf3856ad364e35_6.1.7600.16385_none_1412267f4b3bb985\bukkake sleeping boobs ash .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-nfs-shared.resources_31bf3856ad364e35_6.1.7600.16385_de-de_5803850b2f40840e\spanish gang bang several models glans high heels .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_de-de_6208b91f46896156\swedish kicking bukkake public circumcision .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_it-it_97a45841ff925aa0\fetish several models granny .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-sx-shared_31bf3856ad364e35_6.1.7600.16385_none_9498b282333b64ec\italian lesbian [bangbus] (Jade,Anniston).mpeg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_en-us_aedaf3947d09fbe5\trambling licking boots .mpg.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp\beastiality several models .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\NativeImages_v4.0.30319_64\Temp\black cum beast licking granny .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\amd64_microsoft-windows-h..-hmeshare.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_8c6fc5a7aa8c435d\chinese cumshot licking high heels .avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_515dc677700303ec\sperm several models redhair (Melissa,Sylvia).avi.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor\british handjob gay sleeping traffic .zip.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\assembly\GAC_MSIL\Microsoft.SharePoint.BusinessData.Administration.Client.Intl\american hardcore big .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\x86_microsoft-windows-sharedaccess.resources_31bf3856ad364e35_6.1.7600.16385_es-es_aea650787d30ed8a\african cum fucking catfight shower .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe File created C:\Windows\winsxs\InstallTemp\horse full movie .rar.exe 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe -
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
Processes:
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exepid Process 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1340 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1228 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1844 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1632 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2780 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 308 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1340 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2040 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1228 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2304 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2032 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2428 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1844 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1748 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1632 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2072 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 592 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 552 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1400 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1124 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2780 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1340 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1228 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2084 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 308 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2304 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2040 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2940 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1984 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 3024 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1844 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2428 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1484 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1256 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1632 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2032 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 760 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1552 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 2072 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1292 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 912 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 912 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1644 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1644 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1932 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 1932 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe -
Suspicious use of WriteProcessMemory 64 IoCs
Processes:
91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exedescription pid Process procid_target PID 2908 wrote to memory of 1892 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 28 PID 2908 wrote to memory of 1892 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 28 PID 2908 wrote to memory of 1892 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 28 PID 2908 wrote to memory of 1892 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 28 PID 1892 wrote to memory of 2696 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 29 PID 1892 wrote to memory of 2696 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 29 PID 1892 wrote to memory of 2696 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 29 PID 1892 wrote to memory of 2696 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 29 PID 2908 wrote to memory of 2732 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 30 PID 2908 wrote to memory of 2732 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 30 PID 2908 wrote to memory of 2732 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 30 PID 2908 wrote to memory of 2732 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 30 PID 2696 wrote to memory of 1340 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 31 PID 2696 wrote to memory of 1340 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 31 PID 2696 wrote to memory of 1340 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 31 PID 2696 wrote to memory of 1340 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 31 PID 1892 wrote to memory of 1228 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 32 PID 1892 wrote to memory of 1228 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 32 PID 1892 wrote to memory of 1228 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 32 PID 1892 wrote to memory of 1228 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 32 PID 2732 wrote to memory of 1844 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 33 PID 2732 wrote to memory of 1844 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 33 PID 2732 wrote to memory of 1844 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 33 PID 2732 wrote to memory of 1844 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 33 PID 2908 wrote to memory of 1632 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 34 PID 2908 wrote to memory of 1632 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 34 PID 2908 wrote to memory of 1632 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 34 PID 2908 wrote to memory of 1632 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 34 PID 1228 wrote to memory of 308 1228 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 35 PID 1228 wrote to memory of 308 1228 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 35 PID 1228 wrote to memory of 308 1228 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 35 PID 1228 wrote to memory of 308 1228 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 35 PID 1340 wrote to memory of 2780 1340 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 36 PID 1340 wrote to memory of 2780 1340 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 36 PID 1340 wrote to memory of 2780 1340 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 36 PID 1340 wrote to memory of 2780 1340 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 36 PID 1844 wrote to memory of 2304 1844 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 37 PID 1844 wrote to memory of 2304 1844 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 37 PID 1844 wrote to memory of 2304 1844 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 37 PID 1844 wrote to memory of 2304 1844 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 37 PID 2696 wrote to memory of 2040 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 38 PID 2696 wrote to memory of 2040 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 38 PID 2696 wrote to memory of 2040 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 38 PID 2696 wrote to memory of 2040 2696 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 38 PID 1892 wrote to memory of 2032 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 39 PID 1892 wrote to memory of 2032 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 39 PID 1892 wrote to memory of 2032 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 39 PID 1892 wrote to memory of 2032 1892 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 39 PID 2732 wrote to memory of 2428 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 40 PID 2732 wrote to memory of 2428 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 40 PID 2732 wrote to memory of 2428 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 40 PID 2732 wrote to memory of 2428 2732 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 40 PID 1632 wrote to memory of 2072 1632 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 41 PID 1632 wrote to memory of 2072 1632 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 41 PID 1632 wrote to memory of 2072 1632 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 41 PID 1632 wrote to memory of 2072 1632 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 41 PID 2908 wrote to memory of 1748 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 42 PID 2908 wrote to memory of 1748 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 42 PID 2908 wrote to memory of 1748 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 42 PID 2908 wrote to memory of 1748 2908 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 42 PID 2780 wrote to memory of 552 2780 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 43 PID 2780 wrote to memory of 552 2780 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 43 PID 2780 wrote to memory of 552 2780 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 43 PID 2780 wrote to memory of 552 2780 91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe 43
Processes
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"1⤵
- Adds Run key to start application
- Enumerates connected drives
- Drops file in System32 directory
- Drops file in Program Files directory
- Drops file in Windows directory
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2908 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1892 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2696 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1340 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2780 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵
- Suspicious behavior: EnumeratesProcesses
PID:552 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:2260
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:3440
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:5724
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"10⤵PID:11248
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"10⤵PID:19552
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:8456
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:17788
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:4916
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:9240
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:16084
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:6868
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:17988
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:12560
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:22892
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:3628
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:6032
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:13204
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:25420
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:9004
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13444
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:4928
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:9604
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:19480
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:7796
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:13436
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:2228
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:3392
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:5688
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:11108
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:19624
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:8464
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:17528
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:4892
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:8204
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:14480
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:6628
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:17996
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:11176
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19640
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:3588
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:5828
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:12988
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:8748
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:14452
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:4888
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:10204
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17244
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7640
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13188
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵
- Suspicious behavior: EnumeratesProcesses
PID:1400 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:2948
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:3400
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:5736
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:13112
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:22872
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:8576
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13172
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:4880
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:9232
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:14680
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:6456
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:18004
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:11184
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19672
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:3512
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:5784
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:12832
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13528
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:8980
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:13316
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:4320
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9248
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:15724
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7712
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13812
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2672
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:3696
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:6044
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:11092
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:20392
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9212
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:14696
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5016
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9608
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:14164
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:8040
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13276
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:3620
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5968
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:12824
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:24628
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:8732
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:16136
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4984
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9660
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:18796
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7804
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13452
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:2040 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵
- Suspicious behavior: EnumeratesProcesses
PID:1984 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:896
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:4492
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:8112
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:16108
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:6340
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:18020
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:10916
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:20428
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:4376
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:7932
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:16152
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6152
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:18056
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9512
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19648
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2776
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:3852
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:4876
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13048
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:22936
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:8212
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:16092
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5180
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9672
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19680
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:8096
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:25216
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13772
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4024
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6372
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:20848
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10220
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:18456
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5352
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10700
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19180
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8304
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13164
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:25208
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1292 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:808
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:2684
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9464
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19452
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7824
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:18264
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:14412
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4524
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7552
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:25260
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:16076
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6424
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17940
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:10156
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19544
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:1436
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4296
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:8056
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17880
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13244
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5440
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:12840
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9256
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:16068
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4104
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7328
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17928
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9596
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19120
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5976
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:12980
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:8996
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13472
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1228 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:308 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵
- Suspicious behavior: EnumeratesProcesses
PID:592 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:1532
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:3432
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:5752
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:11132
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"9⤵PID:19664
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:8972
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:12172
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13524
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:4908
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:9372
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13140
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:22928
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:7124
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:17904
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:12548
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:10976
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:3424
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:5708
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13024
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:13668
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:8472
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17808
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:4900
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9224
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:14560
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6516
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17848
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11200
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19744
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2924
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:4000
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:6276
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:18036
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:10940
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19884
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5340
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:11012
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:20692
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:8328
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:14388
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2424
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6644
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:21148
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11140
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19268
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5556
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13060
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:22880
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8568
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13252
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1124 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2408
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:3916
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:5308
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:18044
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9472
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:16904
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5188
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:11308
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:20928
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7572
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:25240
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:16128
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4076
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6520
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19936
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10860
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19172
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5548
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11100
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19704
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8448
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13220
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:2796
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:3736
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6100
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:11116
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19472
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9344
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:14156
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4992
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10844
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:20700
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7840
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13292
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13968
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3800
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5312
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:12964
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9336
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13156
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:25224
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5160
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9640
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:18880
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:7992
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:16120
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
PID:2032 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1484 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2400
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5068
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:10212
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19464
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7308
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:18064
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10172
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:18788
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4500
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:8172
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13852
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6380
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17956
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:10196
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19752
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:1980
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4352
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7692
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13348
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6088
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13364
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9536
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19576
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3808
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7220
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9632
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19112
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5944
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13004
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:9012
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13624
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
PID:2940 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:1920
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4428
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7908
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13324
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6224
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9124
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17516
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9500
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19696
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4364
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7964
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13284
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5428
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:17888
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:10140
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:17920
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:2432
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3960
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6168
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:12456
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:22064
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9520
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19736
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5316
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:10228
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19608
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:7764
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13824
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:4068
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:6504
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:21156
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11032
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:19952
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:5516
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11300
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:21132
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:8368
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:14640
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:2732 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1844 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:2304 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵
- Suspicious behavior: EnumeratesProcesses
PID:3024 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:2504
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:5000
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:9572
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:19220
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:6768
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:18868
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:11192
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19616
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:4508
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:7596
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:14396
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6416
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17980
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11024
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19928
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2416
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:3788
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:5148
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"8⤵PID:12996
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9528
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19584
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5152
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9624
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19688
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7684
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13332
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4060
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6392
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17896
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10164
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19632
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5508
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11124
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19600
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8560
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:17556
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:2084 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:840
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:4448
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:8076
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:13724
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6352
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:14432
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10188
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:16912
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4400
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6968
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:14648
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6184
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17824
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:10236
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:18804
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:2456
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4040
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6472
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17948
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:10932
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:21124
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5432
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11288
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:20936
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8408
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:14688
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3724
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6924
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:20856
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:11224
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19488
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5860
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13356
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:8740
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:14240
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
PID:2428 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:1256 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:2484
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5024
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:10180
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:19568
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7256
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9480
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19196
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4532
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:8196
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:14616
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6536
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:21140
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:11040
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:20368
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:1616
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:3768
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:6860
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:17548
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11148
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:18916
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5868
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:12944
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8964
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:14280
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3812
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7024
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:14772
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:11168
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19592
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5904
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:12528
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:24844
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:8700
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13212
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
PID:760 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3092
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5044
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9580
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19504
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7272
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9488
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19712
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4572
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8340
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:14264
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:6772
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:20840
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11260
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:20248
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:356
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3968
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7116
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19164
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:12596
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:22900
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5912
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13012
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:8724
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:16144
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:3828
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:7064
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11272
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:21116
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:5892
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13308
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:8708
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:13180
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:1632 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
PID:2072 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵
- Suspicious behavior: EnumeratesProcesses
PID:912 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:3136
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:5080
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:9456
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"7⤵PID:18928
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7588
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:11232
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19560
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4516
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7848
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:14656
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6444
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17912
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:10148
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19528
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:2236
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4156
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:7564
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:13196
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:6116
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:16168
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9204
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13268
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:12128
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4088
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7136
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17768
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:11216
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19536
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5920
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:12504
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:22912
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:8988
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:14220
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
PID:1552 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3128
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:5104
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9188
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:17508
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7544
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13148
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:25232
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4560
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8184
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13236
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:6756
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19876
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11020
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:20944
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:1020
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:2460
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7288
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:18780
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9448
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19656
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:5988
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:12512
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13976
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:9324
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13716
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:3864
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:7008
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:18272
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11208
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:19496
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:5876
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13036
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:22920
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:8716
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:16100
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵
- Suspicious behavior: EnumeratesProcesses
PID:1748 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵
- Suspicious behavior: EnumeratesProcesses
PID:1644 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:3212
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:4416
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:9648
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:19720
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7784
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"6⤵PID:18012
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13616
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4552
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:7728
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13884
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:6548
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:19824
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11048
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:20408
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:2588
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4756
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:8588
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:13228
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:6960
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:18028
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:11160
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:19728
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:4464
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:8016
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:14672
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:6304
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:12520
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:22056
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:10132
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:17780
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵
- Suspicious behavior: EnumeratesProcesses
PID:1932 -
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:3224
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4336
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:9588
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"5⤵PID:18936
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:7736
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13340
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:4540
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:7316
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:16160
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:6496
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:20896
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:10924
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:19760
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵PID:2592
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:4772
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:9196
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13260
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:7076
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:13300
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"4⤵PID:4312
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:11256
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:19920
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵PID:4472
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:7604
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:14444
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵PID:6332
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"3⤵PID:18772
-
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵PID:11004
-
-
C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\91e9aacdc9cd30f9121243eaced08480_NeikiAnalytics.exe"2⤵PID:20240
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1.0MB
MD5ab5e1f29241fdfc2ac638d061274592d
SHA110712ca1cee8380c1130cd19abcba3dbf42aa980
SHA256c3b9a74399e720bd8df8e858dcd1a746c8d0d6aa76c1e619fca4a82d52aef2d1
SHA5127e3a8a9baf4ef936811ba11ed001ce787c245ebea3d132da6486bf7e0a360b2fa91179df973fa4423b11a5806d411392f99c4c61d9b2e7196ab22e0aa20226bf
-
Filesize
183B
MD536e1b525f4c367dd176e8b95426aed37
SHA10b9a39a4d79b4eb18e1eee209ceec5c0a6898084
SHA256e513304594101c48283b3c857b066c756330fbbcbb60214ea61ff2939c20dbcd
SHA51207db23e11a47b3b68f046c3b95bab939a96b20489323daca8ab7014fb9a7e6887bb51f8119b66775e0a8682c6752c7202c4cf3501547f19584c98ad3ecac744b