1e4bfa6d8ec4cfabeead18dbce46d450_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e4bfa6d8ec4cfabeead18dbce46d450_NEIKI
Size

996KB
MD5

1e4bfa6d8ec4cfabeead18dbce46d450
SHA1

ba8b629f1cb5704bb2f8f6f21ce4656ebf62b7b9
SHA256

03f3fca61907b7cfa1c40e19212e8582ddca7992db8d6a748746aca21bc373bc
SHA512

117ef9eaf01843643b7d0bcbe8e1daa2a763e78bad5b38d2a174010861331018d6b90716f1a5120a8757ac023969a749209b49eb33118a2bef8087f9812e43c0
SSDEEP

24576:RCi+n45wnWR8m5D7gZxKpNIXALaOnNL1c:u45wni7KqmALo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e4bfa6d8ec4cfabeead18dbce46d450_NEIKI

Files

1e4bfa6d8ec4cfabeead18dbce46d450_NEIKI
.dll windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 779KB - Virtual size: 778KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ