Analysis
-
max time kernel
117s -
max time network
117s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
03-06-2024 13:25
Behavioral task
behavioral1
Sample
a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe
-
Size
8.4MB
-
MD5
a4e6506801edf15135f41f113fceedf0
-
SHA1
1f4df90b302758c45c02cb6439deb68ea8740d64
-
SHA256
7590b97135156b0d5134e9c4a69bb667c0ba27f0c96c8495183fa012713ac83d
-
SHA512
b7580fb7ab5b3d97d6b58eb0a0cb9fd6aadc7da1901af55ffb410d9da27bf567926f6536374b5989a62e00cc564ccb0a780efca1ff737f2a0e681149d1bc8606
-
SSDEEP
196608:lsNgDcdqBA1HeT39IigwdeE9TFa0Z8DOjCdyl75QIRLoXKh:5c4q1+TtIiFUY9Z8D8Ccl7W/XKh
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
Processes:
a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exepid Process 2612 a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe -
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exedescription pid Process procid_target PID 1964 wrote to memory of 2612 1964 a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe 29 PID 1964 wrote to memory of 2612 1964 a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe 29 PID 1964 wrote to memory of 2612 1964 a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe 29
Processes
-
C:\Users\Admin\AppData\Local\Temp\a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe"1⤵
- Suspicious use of WriteProcessMemory
PID:1964 -
C:\Users\Admin\AppData\Local\Temp\a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe"C:\Users\Admin\AppData\Local\Temp\a4e6506801edf15135f41f113fceedf0_NeikiAnalytics.exe"2⤵
- Loads dropped DLL
PID:2612
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
6.6MB
MD53c388ce47c0d9117d2a50b3fa5ac981d
SHA1038484ff7460d03d1d36c23f0de4874cbaea2c48
SHA256c98ba3354a7d1f69bdca42560feec933ccba93afcc707391049a065e1079cddb
SHA512e529c5c1c028be01e44a156cd0e7cad0a24b5f91e5d34697fafc395b63e37780dc0fac8f4c5d075ad8fe4bd15d62a250b818ff3d4ead1e281530a4c7e3ce6d35