Overview

overview

7

Static

static

7

94aae99c36...cs.exe

windows7-x64

7

94aae99c36...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    24-06-2024 17:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    94aae99c36f2632feefc00ba1886f386736206c66d58ab2709fc9b0824a6de67_NeikiAnalytics.exe

  • Size

    83KB

  • MD5

    8ac7bb492f9588f8dfcdfc84c08f6490

  • SHA1

    f33cd0de7552a9cff3d8da17fb91f14589b88bad

  • SHA256

    94aae99c36f2632feefc00ba1886f386736206c66d58ab2709fc9b0824a6de67

  • SHA512

    93d9816a8371ce1dc3a09d1ac29160fc7f5e16a9f52d0cc466fe0c147efcd5384a70d5ffa63bc6d538433d277f7418af06a0a4b7f50bbb6350c6a7c942afb9ef

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+VK:LJ0TAz6Mte4A+aaZx8EnCGVuV

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\94aae99c36f2632feefc00ba1886f386736206c66d58ab2709fc9b0824a6de67_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\94aae99c36f2632feefc00ba1886f386736206c66d58ab2709fc9b0824a6de67_NeikiAnalytics.exe"
    1⤵
      PID:2000

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\rifaien2-AFITIFSRw8btDaow.exe
      Filesize

      83KB

      MD5

      d7461c892699627a94092e1f772a6b92

      SHA1

      afeb495e25ea9c88bbbdce63848aed2594564254

      SHA256

      617174f662470c2850562d9723bdf355adec5d5170f25a478b638193a795bc15

      SHA512

      af2fc88a6cb84add2155efa9833a950b0849dc8713c6e624312ead3c059441b4d668543b1a7292ff26b168ff71deb44c86a2877f8b41b76f03b041bb98f6f6c2

      Download Submit

    • memory/2000-0-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2000-1-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2000-7-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2000-14-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2000-21-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/2000-28-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download