b2be53c09c9fb876be2dfe6af68b30b0_NEIKI | Triage

Sharing

General

Target

b2be53c09c9fb876be2dfe6af68b30b0_NEIKI
Size

119KB
MD5

b2be53c09c9fb876be2dfe6af68b30b0
SHA1

7634d77396942522da7f06298afcc2c7f58a5bdd
SHA256

4b40eb62476b5052143174a5f311944417c9e420a43b35edae092ac179355e55
SHA512

840e991c020e73d24f45bf91cc8de61e9c713ec0e7ff0b4b15af817acbb130d15fe6945a4e09139cfba6eedc61bebacf8d57f1f5c070076516f67b338f94aa0a
SSDEEP

3072:Kvt0NTc0K6lyA6Nx0pZlzxatZuib1DkgNnZ/qk/ILLb7f+XiL0SJ8p:Kv61aHtelleZ9BfNnZ/J/8H6Ss

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2be53c09c9fb876be2dfe6af68b30b0_NEIKI

Files

b2be53c09c9fb876be2dfe6af68b30b0_NEIKI
.exe windows:4 windows x86 arch:x86

3818edbbd40c8667608812e0dacced90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateSymbolicLinkTransactedA
EnumResourceLanguagesW
OpenMutexW
RegRestoreKeyW
CreateEnclave
GetConsoleWindow
WerRegisterMemoryBlock
CreateBoundaryDescriptorW
SetComPlusPackageInstallStatus
GetModuleHandleW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE