a579bfc9d13190deea18bd989b76891d4cff90e4a883a25479a7e5a5a486c5ea

Analysis

max time kernel
150s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
28-06-2024 18:28

Target

a579bfc9d13190deea18bd989b76891d4cff90e4a883a25479a7e5a5a486c5ea_NeikiAnalytics.exe
Size

3.8MB
MD5

bf18c54889bc77497118c57878e5d8b0
SHA1

8ca0fd7212b6909338109a5db2fd46a5df72211f
SHA256

a579bfc9d13190deea18bd989b76891d4cff90e4a883a25479a7e5a5a486c5ea
SHA512

8c8fa3f30f999f1c063636c94ff8a01e70bfdb511cc04bd5a7483bd7805cd32741a4088f53eb426ef7970403b520dd003afaf1a4c49c75d7d15cbe59853a379b
SSDEEP

98304:ooAww/P9Rs3ytLaNIULFH+sdyJPdFotlF1U6Naj1QC5:KHP9RsoOOUpH+skdE8DX

Score

7^/10

themida

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

resource	yara_rule
behavioral1/memory/5004-0-0x0000000140000000-0x00000001409F8000-memory.dmp	themida

C:\Users\Admin\AppData\Local\Temp\a579bfc9d13190deea18bd989b76891d4cff90e4a883a25479a7e5a5a486c5ea_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\a579bfc9d13190deea18bd989b76891d4cff90e4a883a25479a7e5a5a486c5ea_NeikiAnalytics.exe"
1⤵
PID:5004

memory/5004-0-0x0000000140000000-0x00000001409F8000-memory.dmp

Filesize
10.0MB

Download