Malware Analysis Report

2024-10-10 07:19

Sample ID 240610-n38v7shh6x
Target 117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe
SHA256 04ef0657684665e012809188354c4a659c5a23e537ac75f7815b3f6d59c5825d
Tags
score
3/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
3/10

SHA256

04ef0657684665e012809188354c4a659c5a23e537ac75f7815b3f6d59c5825d

Threat Level: Likely benign

The file 117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe was found to be: Likely benign.

Malicious Activity Summary


Unsigned PE

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-10 11:56

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-10 11:56

Reported

2024-06-10 11:57

Platform

macos-20240410-en

Max time kernel

34s

Max time network

46s

Command Line

[sh -c sudo /bin/zsh -c "/Users/run/117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe"]

Signatures

N/A

Processes

/bin/sh

[sh -c sudo /bin/zsh -c "/Users/run/117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe"]

/bin/bash

[sh -c sudo /bin/zsh -c "/Users/run/117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe"]

/usr/bin/sudo

[sudo /bin/zsh -c /Users/run/117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe]

/bin/zsh

[/bin/zsh -c /Users/run/117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe]

/Users/run/117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe

[/Users/run/117bd28085d2185f59371b20cc24add0_NeikiAnalytics.exe]

Network

Country Destination Domain Proto
DE 20.52.64.201:443 tcp
US 8.8.8.8:53 apis.apple.map.fastly.net udp
US 8.8.8.8:53 bag-cdn-lb.itunes-apple.com.akadns.net udp
GB 17.250.81.67:443 tcp

Files

N/A