ae7fd7f70f69cb1a68a33874e62ee340_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae7fd7f70f69cb1a68a33874e62ee340_NEIKI
Size

30KB
MD5

ae7fd7f70f69cb1a68a33874e62ee340
SHA1

f180cc7b1f89267874671a0af5f65ae264a40fcb
SHA256

acd67d69563e079b5dae55a8d9eb298dfd15842383bfaa84ad74cf3b7837e58f
SHA512

c74c86726484ac00bcd8de180994bfca8e830069e195ca16dee91d1b234f2081c5bc598b350e1caecfb7cb9e0e86fcd6a3ec912df8c668e05b1a66de8bc190c6
SSDEEP

768:jBL3B3/qiUe+hegMyKxnVbgvqxNxGK/Y/+hb:b3/q28MyKxnKvKNxGK/Pb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae7fd7f70f69cb1a68a33874e62ee340_NEIKI

Files

ae7fd7f70f69cb1a68a33874e62ee340_NEIKI
.dll windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-libraryloader-l1-1-0.pdb

Exports

Exports

DisableThreadLibraryCalls
FindResourceExW
FindStringOrdinal
FreeLibrary
FreeLibraryAndExitThread
FreeResource
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetProcAddress
LoadLibraryExA
LoadLibraryExW
LoadResource
LockResource
SizeofResource

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ