ee0182a436c56b64823d37b27d6de1fe68440dfd6c5b176b69d5200ece941859

Analysis

max time kernel
150s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
17/05/2024, 05:16

Target

b1cea479cfd92da5a8094a92ea887a10_NeikiAnalytics.exe
Size

99KB
MD5

b1cea479cfd92da5a8094a92ea887a10
SHA1

2e1b62c2503eb41f2d438568c5986ffd22243ed4
SHA256

ee0182a436c56b64823d37b27d6de1fe68440dfd6c5b176b69d5200ece941859
SHA512

0fe53f2753f253a81067a0d2310d6eb4532bd13265e14d463014b067e94fdc3573c208ac947c9d6c6d19a049a814f134dc60700ffc03d352d7ea3d5bbbdf1a00
SSDEEP

768:jGvbqsQdX5BhGEnOsIzfJ4i4g5p0syi+hvN18K3H8T6++3KI4Fyu8hcLCik5dAy/:CzqsQ5PIt4+/yfeB6r6YcOik5h36lJO

Score

7^/10

upx

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/3644-0-0x0000000000400000-0x000000000041B000-memory.dmp	upx
behavioral2/files/0x000c000000023352-5.dat	upx
behavioral2/memory/3644-101-0x0000000000400000-0x000000000041B000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\b1cea479cfd92da5a8094a92ea887a10_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\b1cea479cfd92da5a8094a92ea887a10_NeikiAnalytics.exe"
1⤵
PID:3644

C:\My Downloads\Half-life WON ISO - Full Downloader.exe

Filesize
99KB

MD5
716d9fdfc5f0fdb2ee96edd7d96578e5

SHA1
161538539fbbe065eb565177f79733a22d786fc5

SHA256
eabbec9513784969e88db74d21110eca8c7fab8a6e7261732098ba34e262d229

SHA512
8a570cbdb925619e9ea0d7f71baba01138224eac0cdc4ef1d9ed76d3b051191d6e109071bee0e72376f21c1a3d150ee9d1c0116077a55799372d8b08af7e96fa

Download Submit
memory/3644-0-0x0000000000400000-0x000000000041B000-memory.dmp

Filesize
108KB

Download
memory/3644-101-0x0000000000400000-0x000000000041B000-memory.dmp

Filesize
108KB

Download