Analysis

  • max time kernel
    141s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/06/2024, 16:11

General

  • Target

    6b23a36f8ec2a0845e8758ff6c556240_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    6b23a36f8ec2a0845e8758ff6c556240

  • SHA1

    4c809df7c2d74c9a420604d489952741f48768a4

  • SHA256

    67428556b168a61e1176ab4cc7fb6d9e5d7cc8dc949d2e3f5452c9005282e2f1

  • SHA512

    eb0e00f1bde45d664d16373f8e7117e82bc4e7f21ea52c555aa286f03c2de6beb5e6bb2451a870859f48ee18c41a9aaf07af805857769b6c1cf85e2afaeb0822

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+dK:LJ0TAz6Mte4A+aaZx8EnCGVud

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Processes

  • C:\Users\Admin\AppData\Local\Temp\6b23a36f8ec2a0845e8758ff6c556240_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\6b23a36f8ec2a0845e8758ff6c556240_NeikiAnalytics.exe"
    1⤵
      PID:2868

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Local\Temp\rifaien2-wrGJ1MxkG7NVOv5N.exe

            Filesize

            83KB

            MD5

            a7c7d16a5c2ccad851fb4087b97a8f6b

            SHA1

            c15759c8c8137eef4cf9f75d297c283adb599102

            SHA256

            fafeb8dbef197b7be3a6cdcde5018b670bef357376358d6604affe4546fa6856

            SHA512

            45c02af9e843fc65c0cb43ff568991a35f159ecdae367302a131690c500e40a4308d49aec9ac119d702039f8c86f5a10caa2edc2ff751a39fb391981dbd98148

          • memory/2868-0-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

          • memory/2868-1-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

          • memory/2868-5-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

          • memory/2868-14-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

          • memory/2868-21-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

          • memory/2868-28-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB