1f0acd7e1d928d43273f6c29bc480a30_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f0acd7e1d928d43273f6c29bc480a30_NEIKI
Size

1.5MB
MD5

1f0acd7e1d928d43273f6c29bc480a30
SHA1

4095235da00dc95cbe2ee883e08985ccf48847e7
SHA256

57ef87f6201477a10aa2c19ac7562a65411d6cb3ab7a8ed5463f6558b08cc830
SHA512

82d188f195921b377d80ec37d23059d684b6b17a3220afb1fdb7b16656cf09a39d298c4ecc07c1965243a603c173e6525f780895edebef55408688708b5576f5
SSDEEP

24576:8oAC0sDO5w/r27WUtLpwbtLpwimDtaLg/DRZhf0deU/N9M+ugdM4WC6wK3Mu2E:8sDOaKbtL2tL7mDta4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f0acd7e1d928d43273f6c29bc480a30_NEIKI

Files

1f0acd7e1d928d43273f6c29bc480a30_NEIKI
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\_Bld\10657\7994\Sources\obj\Win32\Release\EvaluationContainer.NetFX45.csproj\Microsoft.Mashup.Container.NetFX45.pdb

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ