384412d1306fc12c2d1c6daeaf279a20_NEIKI

General

Target

384412d1306fc12c2d1c6daeaf279a20_NEIKI
Size

198KB
MD5

384412d1306fc12c2d1c6daeaf279a20
SHA1

4fc230c0f99104dc81b72d118606b3ccdd9aa310
SHA256

147982ff10394285870cea869884d8f389b091348d1f1933414f50fc5ec8359c
SHA512

ad3c5cf71389714734fd05d5a62020123cdf498fd5d0b97de863a835e51d53f96c05c3f8cb0455e68c9982f4219eb84d5b98e5cbb9b171da13926f6988f0af0f
SSDEEP

3072:ZhOmTsF93UYfwC6GIoutFza6BhOmTsUm82xpi8rY9AABa1JePQKN1hJCm:Zcm4FmowdHoSha6Bcm4JddW7Y6XJCm

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
384412d1306fc12c2d1c6daeaf279a20_NEIKI

Files

384412d1306fc12c2d1c6daeaf279a20_NEIKI
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 104KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ECirJzGp
Size: 1KB - Virtual size: 1KB

wkJfYGjg
Size: 31KB - Virtual size: 30KB

lcVzaaqg
Size: 16KB - Virtual size: 16KB

lUcKhPBE
Size: 2KB - Virtual size: 1KB

pAXqbvIA
Size: 1KB - Virtual size: 1KB

oIuDZgXR
Size: 512B - Virtual size: 506B

ikQCxZps
Size: 4KB - Virtual size: 3KB

zMwKRJQJ
Size: 3KB - Virtual size: 2KB

VCJyHMvV
Size: 1KB - Virtual size: 1KB

ljTyMjHW
Size: 15KB - Virtual size: 15KB

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 104KB

.data1 Size: 40KB - Virtual size: 44KB

UPX2 Size: 512B - Virtual size: 4KB

ECirJzGp Size: 1KB - Virtual size: 1KB

wkJfYGjg Size: 31KB - Virtual size: 30KB

lcVzaaqg Size: 16KB - Virtual size: 16KB

lUcKhPBE Size: 2KB - Virtual size: 1KB

pAXqbvIA Size: 1KB - Virtual size: 1KB

oIuDZgXR Size: 512B - Virtual size: 506B

ikQCxZps Size: 4KB - Virtual size: 3KB

zMwKRJQJ Size: 3KB - Virtual size: 2KB

VCJyHMvV Size: 1KB - Virtual size: 1KB

ljTyMjHW Size: 15KB - Virtual size: 15KB

UPX0
Size: - Virtual size: 104KB

.data1
Size: 40KB - Virtual size: 44KB

UPX2
Size: 512B - Virtual size: 4KB

ECirJzGp
Size: 1KB - Virtual size: 1KB

wkJfYGjg
Size: 31KB - Virtual size: 30KB

lcVzaaqg
Size: 16KB - Virtual size: 16KB

lUcKhPBE
Size: 2KB - Virtual size: 1KB

pAXqbvIA
Size: 1KB - Virtual size: 1KB

oIuDZgXR
Size: 512B - Virtual size: 506B

ikQCxZps
Size: 4KB - Virtual size: 3KB

zMwKRJQJ
Size: 3KB - Virtual size: 2KB

VCJyHMvV
Size: 1KB - Virtual size: 1KB

ljTyMjHW
Size: 15KB - Virtual size: 15KB