SMSvcHost.pdb
Static task
static1
Behavioral task
behavioral1
Sample
1f6bcd320b62567c2545d5baf235e1c0_NEIKI.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1f6bcd320b62567c2545d5baf235e1c0_NEIKI.exe
Resource
win10v2004-20240419-en
General
-
Target
1f6bcd320b62567c2545d5baf235e1c0_NEIKI
-
Size
6.8MB
-
MD5
1f6bcd320b62567c2545d5baf235e1c0
-
SHA1
6f694d1a1e66a3cd94f29a990b84bd8bec235fac
-
SHA256
664e16d7fdc4d8cc798c7430c7830a29d07641a1184ccc458f32914d27f6970a
-
SHA512
5c0b214ff0629d0e6ba3ac65d290157edfa4abdd9332afb9c6ddb459328983e95ec9a3a0fc210019de67e2d78eafd8cb6d1dff9c5d2a1a8d7f0df3996a61bdcf
-
SSDEEP
98304:9QkPpuHL3FLGHpcC2LiQHkmy1y3JyZszMcOe8/mMrm1RF4:akRurVKL22QHpEy3JyZOwyHF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1f6bcd320b62567c2545d5baf235e1c0_NEIKI
Files
-
1f6bcd320b62567c2545d5baf235e1c0_NEIKI.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 96KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ