dac2e79989541b238665f129b1a1b970_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dac2e79989541b238665f129b1a1b970_NEIKI
Size

315KB
MD5

dac2e79989541b238665f129b1a1b970
SHA1

c49d07fb238a83b11ca24c521c9e2017448e8e9c
SHA256

d2c09f72d609a7a754c2c87ccd98115a53dc1b5e704c1ea93e062014ef6fb494
SHA512

cb1fc579f89d83456d54af886547b58aa7ad5bc2aaaa8c00b849fda2cb4f8f4c1e345bd2a53f53d3c288be006a9480feb9f7918d237b1622883f1bb63efab758
SSDEEP

3072:ldB71ySRT7RXA3qP+BhVjtJDW722/p4ja3QSz:/HRWqGZtJe2fUQSz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dac2e79989541b238665f129b1a1b970_NEIKI

Files

dac2e79989541b238665f129b1a1b970_NEIKI
.dll windows:4 windows x86 arch:x86

e07e00e45407ff0dd6abc9eaa981fa7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_initterm
malloc
_adjust_fdiv
free

Exports

Exports

?InitRes@@YAXXZ

Sections

.text
Size: 512B - Virtual size: 342B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ