02939a6ee0041db593ee5c8d22854dc0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02939a6ee0041db593ee5c8d22854dc0_NeikiAnalytics
Size

273KB
MD5

02939a6ee0041db593ee5c8d22854dc0
SHA1

347d024867dee95541703c4b157706857141e974
SHA256

65c0d94ecae1fd6a93a674aded39c5d0640777d77c7ffb130d139844e1dcf55a
SHA512

9bf23faea0d2429bdbd62e97486f0680e796edc9f5a922c8a8b8b8e0185de7548f738d237212ac8e26d4f2c3d68798ecf7cdc8743adfb06b39284368c64f0d26
SSDEEP

3072:6ZJ2LjNQnIhvIKRo+Kb/zKiOpiOmvOmOvO6O5O:6reun2QKpKtqizvZE1a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02939a6ee0041db593ee5c8d22854dc0_NeikiAnalytics

Files

02939a6ee0041db593ee5c8d22854dc0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

4b2a8bf4e6ad0726a8b61266e233d3a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
SetUnhandledExceptionFilter
NlsResetProcessLocale
EnumResourceTypesW
SetErrorMode
CreateFiberEx
EnumResourceNamesA
CmdBatNotification
IsValidLanguageGroup
GetLongPathNameA
IsBadReadPtr

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 238KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE