5ce5442d080ec9b136881892091283a2eedccdc426bbf0c91b8a14446be943b5

Analysis

max time kernel
121s
max time network
125s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
17/05/2024, 09:39

Target

e7ab916e2e049efb6d621738990eb600_NeikiAnalytics.exe
Size

44KB
MD5

e7ab916e2e049efb6d621738990eb600
SHA1

ff881ea3d85892423d157c8cc44582a7d80ff4b1
SHA256

5ce5442d080ec9b136881892091283a2eedccdc426bbf0c91b8a14446be943b5
SHA512

bcc91e577323b0f613009329f2904c56e327a1ee7c54bb02a39758d13bb5e0ff85a414cb5c271964d7b46099fd58cb2e31628996205dc48867e895070801a497
SSDEEP

768:ITRfpN0pOy3OzeXmOGXbJOlB2vsLCikGF2xdKJCh5PTnEMen6X2L7UAv7XKNe:IHzzeWHXbJGB2EOikptEMs6XW7U0l

Score

7^/10

upx

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/2156-0-0x0000000000400000-0x000000000041A000-memory.dmp	upx
behavioral1/files/0x0008000000016448-5.dat	upx
behavioral1/memory/2156-101-0x0000000000400000-0x000000000041A000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\e7ab916e2e049efb6d621738990eb600_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\e7ab916e2e049efb6d621738990eb600_NeikiAnalytics.exe"
1⤵
PID:2156

C:\My Downloads\Elder Scrolls III Morrowind THX Brrbrr Patch.exe

Filesize
44KB

MD5
d07c5e905f0f634099c48db30c9b8866

SHA1
ca6b055c68527d45b41e867b3ccb4c66e1bdf7ba

SHA256
75d30c6160f108c842d20c320db3d17c4eaf3e9ea16c3c02e2eecabd81555513

SHA512
0179061586d9ee15ce55f4a7b90bccb38de786e2d379ed64e3b4ee9c856fa221521dcd85c7d76104fa9483935606bd250c143e4499eecb4ef44d40ecbd145c47

Download Submit
memory/2156-0-0x0000000000400000-0x000000000041A000-memory.dmp

Filesize
104KB

Download
memory/2156-101-0x0000000000400000-0x000000000041A000-memory.dmp

Filesize
104KB

Download