5d46c2ad5a85774ecb4dc8952e3318d0_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d46c2ad5a85774ecb4dc8952e3318d0_NEIKI
Size

66KB
MD5

5d46c2ad5a85774ecb4dc8952e3318d0
SHA1

23751529f2eec887ad5ab8a404a32bbb32025184
SHA256

a23b73aebae02d5b98e604efb3529137e5b431ba8e37a41b6b1bdab01fe7f72d
SHA512

47e10a42b26fc46dff7b9d893be57abf0342401a0c00f6caf66b4ed4d868d1281aaa2c84b4927b874467686d920068ef5a679df1b3303d3b6115f6bdb31c407f
SSDEEP

1536:75O3UY5W0TsrFWP8f5XmMkWs6CNERR32Yz1GJou+:7k1Is2XXmkpRRHa+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d46c2ad5a85774ecb4dc8952e3318d0_NEIKI

Files

5d46c2ad5a85774ecb4dc8952e3318d0_NEIKI
.exe windows:4 windows x86 arch:x86

42d1cf941e62d675d00dbe5c08c3e081

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
GetDevicePowerState
WerGetFlags
AdjustCalendarDate
DeactivateActCtx
GlobalFix
EscapeCommFunction
SetConsoleCursorInfo
SetDefaultCommConfigW
InitializeSListHead
InitializeSRWLock

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE