b0ab4b7b6db477fbb41896c90d1ba330_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0ab4b7b6db477fbb41896c90d1ba330_NEIKI
Size

753KB
MD5

b0ab4b7b6db477fbb41896c90d1ba330
SHA1

a6860c262c5e3530f074d987f37a4c2fbd38791e
SHA256

f6c8a6975612956a58a6c8896cc2bb7fe807f6177851277e0e310b443b9eac0a
SHA512

d79c0e94e1e48e3fba97c86ac852f5fcbb3db54fc137b2ffc4763b09eae43f73f6594a9588124210060d1e43691fad2ed66a93aac3e3ca92615568c19310d9c3
SSDEEP

12288:SvqGmm3XPK9W/lgFOxcQbUFHS52fmVjdZ/XJuNo1yZekU9IKtb/L9CBPY6/RoG5i:SvqW3oglgkc3FyIfYxZ/w0ykkU9ZtPMY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0ab4b7b6db477fbb41896c90d1ba330_NEIKI

Files

b0ab4b7b6db477fbb41896c90d1ba330_NEIKI
.exe windows:4 windows x86 arch:x86

de258757f1e92184fdf26c22430bf7c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

PfxInitialize

user32

GetClipboardOwner
GetMessageExtraInfo

Sections

.text
Size: 746KB - Virtual size: 748KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 351B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE