9e2bf43e47f04004746b12578bdb3820_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9e2bf43e47f04004746b12578bdb3820_NEIKI
Size

112KB
MD5

9e2bf43e47f04004746b12578bdb3820
SHA1

65cfb2a254edbbadbfacee7cdc71024e21f5c015
SHA256

99b2d0218cdff5273ed4318885d7d7f580b7b9270a777a619650b06efebc0501
SHA512

cbc182f1663afcc0e2c29d5ccfa55f44a57f1cb238e41bc13ed1e9a4b23d4f3f35a90c9cb2dcf65169052ef090db55e785ab53a7c447c79a28dd013672a3aea8
SSDEEP

1536:h8AhY85WOWYOFwFRntfWeoGiPyCHjKDjfQQQtU:5rEF6tfPN4yCDKDjfQQQt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9e2bf43e47f04004746b12578bdb3820_NEIKI

Files

9e2bf43e47f04004746b12578bdb3820_NEIKI
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.bss
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.NewSec
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE