Overview

overview

7

Static

static

3

3d835a8259...cs.exe

windows7-x64

7

3d835a8259...cs.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01-07-2024 06:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3d835a8259b8bd53f8db1813396ea04406d92e543a44146fb6e738c4b4400a9d_NeikiAnalytics.exe

  • Size

    10KB

  • MD5

    66b238fde6288a0d080b19914a530720

  • SHA1

    fdf0497777a34442e6f7be54d717f32ed74ba679

  • SHA256

    3d835a8259b8bd53f8db1813396ea04406d92e543a44146fb6e738c4b4400a9d

  • SHA512

    39405c8b4b081d2782e6241e421c8759aaf4c224acf62577e98d8acf736ab5e701388c4c912684c76aa6eeeaaee6f275926e17bcf964792df611561a58d847ca

  • SSDEEP

    96:dwk8dCBjttW4/w14lyiEfULRtWjkPCJ8KawCxSCrmZYqvfucfSevzjD5g5vVE5vv:dwxCtttz/W4lyiEfUHkB8nwCxQDqzu5

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3d835a8259b8bd53f8db1813396ea04406d92e543a44146fb6e738c4b4400a9d_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\3d835a8259b8bd53f8db1813396ea04406d92e543a44146fb6e738c4b4400a9d_NeikiAnalytics.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4868

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4868-0-0x000000007465E000-0x000000007465F000-memory.dmp
    Filesize

    4KB

    Download
  • memory/4868-1-0x0000000000740000-0x0000000000748000-memory.dmp
    Filesize

    32KB

    Download
  • memory/4868-2-0x0000000074650000-0x0000000074E00000-memory.dmp
    Filesize

    7.7MB

    Download
  • memory/4868-3-0x0000000074650000-0x0000000074E00000-memory.dmp
    Filesize

    7.7MB

    Download