Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 02:18
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
9a9e3d0c4412049cc21f32a28ca2b260_NeikiAnalytics.exe
Resource
win7-20240221-en
2 signatures
150 seconds
General
-
Target
9a9e3d0c4412049cc21f32a28ca2b260_NeikiAnalytics.exe
-
Size
830KB
-
MD5
9a9e3d0c4412049cc21f32a28ca2b260
-
SHA1
fc503e3aae0789bdb03484a20fa242fc64bf6ec6
-
SHA256
76de4edc0644250b7ff9d46c94c988559188495ef51ce586a6167946c841ed5b
-
SHA512
91ecd9fcc23504d7160d85ebf55f96714f1f2d2819a93aef08ad645de2308c98fd30211513fa72211a88bf09a73dce43c621e24025688302bb2ca22dc37923d6
-
SSDEEP
24576:WPIaQ7kTm5Yt/sBlDqgZQd6XKtiMJYiPU:aIfYTp/snji6attJM
Score
5/10
Malware Config
Signatures
-
Drops file in System32 directory 1 IoCs
Processes:
9a9e3d0c4412049cc21f32a28ca2b260_NeikiAnalytics.exedescription ioc process File opened for modification C:\Windows\System32\alg.exe 9a9e3d0c4412049cc21f32a28ca2b260_NeikiAnalytics.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
9a9e3d0c4412049cc21f32a28ca2b260_NeikiAnalytics.exedescription pid process Token: SeTakeOwnershipPrivilege 2276 9a9e3d0c4412049cc21f32a28ca2b260_NeikiAnalytics.exe