7e7f7e981ef20f0a2023b4a56054b4f0_NEIKI

General

Target

7e7f7e981ef20f0a2023b4a56054b4f0_NEIKI
Size

28KB
MD5

7e7f7e981ef20f0a2023b4a56054b4f0
SHA1

5e34afdca3956e853b17e31e4b0ea16da3e7d6ef
SHA256

2da6a95f7650328676cb5777eebadab2ae3fac678fb661b014e5b343ef2c012e
SHA512

50b53c8345446f76e0bb44382717523bacfca3d4581715ead5eb400b18f7f24be0ff670934b23bca46801955e6126a0299b6ef3d257e9e45b5e5ad5a79eeea0b
SSDEEP

384:FGW4WlPo7GI181EMHI9tJGwBbgeQ+cFpL4Xl+oi:rRdo7p1+nHStJGwBkeCmkx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e7f7e981ef20f0a2023b4a56054b4f0_NEIKI

Files

7e7f7e981ef20f0a2023b4a56054b4f0_NEIKI
.exe windows:4 windows x86 arch:x86

d03785d401c7e27e5938517a66279d6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetFocus

python23

PyModule_GetDict
PyMarshal_ReadObjectFromString
PySequence_Size
PySequence_GetItem
PyCode_Type
PyEval_EvalCode
PyErr_Print
PySys_SetArgv
Py_FdIsInteractive
PyRun_InteractiveLoop
Py_Finalize
Py_SetPythonHome
PyImport_AddModule
Py_OptimizeFlag
Py_SetProgramName
Py_Initialize
Py_GetPath
_Py_TrueStruct
PySys_SetObject
PyString_FromString
PyImport_ImportModule
PyCFunction_NewEx
PyObject_SetAttrString
PyArg_ParseTuple
PyInt_FromLong
PyRun_SimpleString
Py_NoSiteFlag

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_iob
strrchr
sprintf
_snprintf
strncpy
__p___argc
__p___argv
getenv
_putenv

kernel32

GetStartupInfoA
GetModuleHandleA
GetModuleFileNameA
GetLastError
FindResourceA
LoadResource
LockResource
GetFullPathNameA
FormatMessageA
LocalFree
lstrlenA

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d03785d401c7e27e5938517a66279d6b

Headers

File Characteristics

Imports

user32

python23

msvcrt

kernel32

Sections

.text Size: 4KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 12KB - Virtual size: 12KB