259d606cd8a81e6c41903ee614a5a240_NEIKI | Triage

Sharing

General

Target

259d606cd8a81e6c41903ee614a5a240_NEIKI
Size

5KB
MD5

259d606cd8a81e6c41903ee614a5a240
SHA1

a60b000178156230a8ead568566619bd1851717a
SHA256

898238b95a54cc9d8dba73425170d33f80f6e4b02691d8fda3f6d427fefe4eb5
SHA512

4a5dffe4f6d97cf9dec8b1c09853924618551bb77938a96d900d2a89aafe036ed094ece707735be51dec69c93e6c1887d1c70dd2b244efdf00b03948edc5d5ff
SSDEEP

48:6Ls5WI5kI82hwenA84GuJxttBrLffiq0fyQir43KS5aIlPRYkFWSfbNtm:zWIKqhweA8UBrfiq0fy+3K8PdR9zNt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
259d606cd8a81e6c41903ee614a5a240_NEIKI

Files

259d606cd8a81e6c41903ee614a5a240_NEIKI
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

G:\___rvBooks\____13 ТОТАЛЬНЫЙ ТРЕНИНГ ПО СИ-ШАРПУ\_Projects\NOK\obj\x86\Debug\NOK.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ