abcb71d2668b165fa11611af407c1f90_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abcb71d2668b165fa11611af407c1f90_NEIKI
Size

84KB
MD5

abcb71d2668b165fa11611af407c1f90
SHA1

87c54c35b29ba937ab11c5b891cfdf1de7992b9f
SHA256

be467d0bb995446cd306ebb891e7a869cef0d830f6e1de7c78fb680535ac8a31
SHA512

7486dd4e839309c4a5ce7efbdb660698289f080de87f1064b3c6ae00559e871e78635092ed7f80d8c15a4b06123650b66bea5e1fb52f83216895fa90267be4a9
SSDEEP

768:h/IIRo0TIIRocIIRoBIIRoI1IIRoYbIIRoobIIRo46IIRoIxIIRoYUDIIRoo2IIu:yNTDBT3Y+e/yD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abcb71d2668b165fa11611af407c1f90_NEIKI

Files

abcb71d2668b165fa11611af407c1f90_NEIKI
.dll windows:4 windows x86 arch:x86

e9b5d04d6308bf9d1e3928ad1e4da920

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

f3biprct

ord31
ord26
ord25
ord3
ord1
ord30
ord67
ord82
ord27

f3biio

ord38
ord22

kernel32

DisableThreadLibraryCalls

Exports

Exports

KJ11B020

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ