c28c0cb6d90553d3d2e41dbb1ad38640_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c28c0cb6d90553d3d2e41dbb1ad38640_NEIKI
Size

16KB
MD5

c28c0cb6d90553d3d2e41dbb1ad38640
SHA1

1abdb1c19fd67bf21b8ea135f284ec185f74331f
SHA256

9b3e9d3e53cd638a24f30ba96e0c5f2f79a4f1f511c30bfb542360247e1f8349
SHA512

f716173818f9f50bd94fb62e99544eb028c4e1dea9ce86bc7be88ac3108bb4e746e1484f20aba98fb87406eab72c9630ea8221276e186e2b4408bde4cc05f68a
SSDEEP

384:u5dj8CCvqcxJREj7rpHYd0RsNuxCFtu/lIwo59NV23BFVb2h4lAbZ719eKtojM:u5dji7Jej7rpHYdYsNuxQtu/lIwonNVf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c28c0cb6d90553d3d2e41dbb1ad38640_NEIKI

Files

c28c0cb6d90553d3d2e41dbb1ad38640_NEIKI
.exe windows:4 windows x86 arch:x86

ecf1bd3206976f3e5a517a2b934d647d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
SendMessageW
DialogBoxIndirectParamW
ClientToScreen
MessageBoxW
wsprintfW
GetDlgItem
MessageBoxA

kernel32

ExitProcess
GetModuleHandleA
CreateFileW
CloseHandle
GetFileSize

gdi32

LineTo
TextOutA
MoveToEx

comctl32

InitCommonControlsEx

shell32

DragFinish
DragQueryFileA
DragQueryPoint

wintrust

WinVerifyTrust

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ