82fc65f45f8949bf22289510174c39e0_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

82fc65f45f8949bf22289510174c39e0_NEIKI
Size

27KB
MD5

82fc65f45f8949bf22289510174c39e0
SHA1

fda8c8b0b3e90e73d907d1a347c5cdf1d6320b92
SHA256

52848d4990b23b45db7a57a6623a1f5485a08bdeaf5c199d2b9bb0f2785cd675
SHA512

615a6d626024156fa3ba2ca3d19c2b73accbcf4103ded18f68ebee73414b228fb5b5dc7e3227e5246cf862e2a56644649195e907dd6ee96e05c4125dd244ba27
SSDEEP

384:YyPGhqqLDE9n8l844i0rzLKPywlgkjdbIHg0tQybPp1wHZ:Yyuw0DWn8l84UzmPywlgieg0tQI3O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82fc65f45f8949bf22289510174c39e0_NEIKI

Files

82fc65f45f8949bf22289510174c39e0_NEIKI
.exe windows:4 windows x86 arch:x86

59fcf8e5b9f472815ad488343099f36b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
VirtualProtect
InitializeCriticalSection
GetModuleHandleA
HeapAlloc
GetProcessHeap
TerminateProcess
VirtualAllocEx
HeapFree
VirtualAlloc
lstrlenA
GetLastError
lstrcpyA
OutputDebugStringA
GetTempPathA
CloseHandle
WriteFile
SetFilePointer
ExitProcess
ReadFile
GetFileSize
CreateFileA
CopyFileA
GetModuleFileNameA
lstrcatA
GetProcAddress
WritePrivateProfileStringA
LeaveCriticalSection

user32

MessageBoxA

advapi32

CryptGenRandom
CryptAcquireContextA
CryptReleaseContext

Exports

Exports

szFile

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 931B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ