502989e86bca66c34428c295b1877150_NEIKI | Triage

Sharing

General

Target

502989e86bca66c34428c295b1877150_NEIKI
Size

11KB
MD5

502989e86bca66c34428c295b1877150
SHA1

7fd1bb89cc862b655fcd1f37ba18d209ae9d8f6c
SHA256

954822f173cb7e373b2d450dba24ad522c0a9834c7d94e813b766a25e2367bdb
SHA512

34a7968cc88e80ad31958f58b56e76d20d93918d0eb56701b11279748f7be2b69a26374d001f9c1343d9f912c23207f6656b8ec3f81f0800881713225dbbd850
SSDEEP

192:yrZia2eHa+6Oa9kHUzYCJ0rUot0YB/IWPf:+ia2u/a9TYCJ0Pt0cIWP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
502989e86bca66c34428c295b1877150_NEIKI

Files

502989e86bca66c34428c295b1877150_NEIKI
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Adam\Desktop\cok\CallofKings1\CallofKings\CallofKings\obj\x86\Debug\CallofKings.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ