a80284771ea70a6fb3d65d8c618d7040_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a80284771ea70a6fb3d65d8c618d7040_NEIKI
Size

11KB
MD5

a80284771ea70a6fb3d65d8c618d7040
SHA1

dc3b8771c3578bdf3b903b75cbe5b67553551e04
SHA256

e5516204ab555f62c23e695c772a846c386d4ae60ba020602662296bd531227b
SHA512

31fe15c65eeb6675841cbc3b91ec8723211388eeb0cafe1298dc30b4ddcf5ae4d862eff32036821fe4908c81d05b8e3ddc2cdb0e5b9dc0335d4dc1716816d22f
SSDEEP

96:TN/xy5HCp+d+tZmWnc2kf5wGxlbh0RoXoZCbD79KTUWKWWo5vCNkhrkrS/MK:TvgktZmrhbx9ORoSY9KYGWmCvW1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a80284771ea70a6fb3d65d8c618d7040_NEIKI

Files

a80284771ea70a6fb3d65d8c618d7040_NEIKI
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\ammeep\Documents\GitHub\Windows\GitPad\obj\x86\Release\Gitpad.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ