bb6c0a6c96fff18d20f816392817d97ab1b2145b382f52d33af54746f313edb8

Analysis

max time kernel
120s
max time network
121s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
30-05-2024 01:12

Target

5e04bae60a69b8ad52e7b38860a13210_NeikiAnalytics.exe
Size

29KB
MD5

5e04bae60a69b8ad52e7b38860a13210
SHA1

1cc05c2122e3444a354bca3f2475ebb90cab75b1
SHA256

bb6c0a6c96fff18d20f816392817d97ab1b2145b382f52d33af54746f313edb8
SHA512

f45f6717f731335e1e102aee4f5a752d00fab78963b060a3fc2064156dccff54aa5a56837b9c4a000eef992e5c616d86d256b7d2445bb87a4ddaf08069da091c
SSDEEP

768:ITRfpN0pOy3OzeXmOGXbJOlB2vsLCik5dAy7b6lSB:IHzzeWHXbJGB2EOik5h36la

Score

7^/10

upx

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/3036-0-0x0000000000400000-0x000000000041A000-memory.dmp	upx
behavioral1/files/0x0007000000016575-5.dat	upx
behavioral1/memory/3036-101-0x0000000000400000-0x000000000041A000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\5e04bae60a69b8ad52e7b38860a13210_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\5e04bae60a69b8ad52e7b38860a13210_NeikiAnalytics.exe"
1⤵
PID:3036

C:\My Downloads\Warcraft 3 Patch.exe

Filesize
29KB

MD5
4d29f783686f296503dd03b8423bec0d

SHA1
fe38e83e9e847428bbd9d1c524bc012328ade150

SHA256
91b5c3d824eb2c5c2864142014eff5e7a70d88af532a05c9424b8fd7744634b8

SHA512
e26f0a15d146fb7ccea330a76eeb25b0159291eb98425e4d3e5f48e9db285d948d21943222f62689546206c844d3a2e9b7e8e558f6cd2342e8a947f2a6ede5c5

Download Submit
memory/3036-0-0x0000000000400000-0x000000000041A000-memory.dmp

Filesize
104KB

Download
memory/3036-101-0x0000000000400000-0x000000000041A000-memory.dmp

Filesize
104KB

Download