117eed864194ae9f82ee28ff23051520_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

117eed864194ae9f82ee28ff23051520_NEIKI
Size

1.1MB
MD5

117eed864194ae9f82ee28ff23051520
SHA1

c08748c5145d60f9768e979db49d54821b00ceba
SHA256

477729f49683845fa3ce482b596a9eed84d7e6969a124aed51d74ea54371c90f
SHA512

c698aee69f87a5517d06ce66bc82f74cbc2146f85f4237c24518e0f0392570f1e822388cf4a29970cf34efc41f8f3a79d7c473331f5a5e3b89ba253ccc93ea2f
SSDEEP

1536:4mfuYjFpR4vS22jY/kb0yEbejra1dRsJU6FU/8h48Rw+1w1V1rmS3:4mfRnVN0yESCDRwPh48Rwcw1zrf3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
117eed864194ae9f82ee28ff23051520_NEIKI

Files

117eed864194ae9f82ee28ff23051520_NEIKI
.exe .ps1 windows:5 windows x86 arch:x86 polyglot

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 993KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

csocoys
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE