c3e0afdb57b7560fd9a6681a8ddcf460_NEIKI | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3e0afdb57b7560fd9a6681a8ddcf460_NEIKI
Size

1.5MB
MD5

c3e0afdb57b7560fd9a6681a8ddcf460
SHA1

1d4cda765e5471c171ab470685ea2d32db557621
SHA256

a74f343765efff8598d1d8143e53e746038053b0020d1602baecbbfd0645ff53
SHA512

ac4dbf40076c9d33e5e11cb0c88795521fdb0d877f76bde0463e590e9147f7471d4a35ddc15a3e04f9a1cc0f85d163995be2d7f85e60c00805acfbb133d6b2e3
SSDEEP

24576:R90wDqopy/fEHe64KIl+7twKoG/mB31tRW4C38jMv9YmX5uB0ih:bu6e3U7tw+ERk0MlB5u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c3e0afdb57b7560fd9a6681a8ddcf460_NEIKI

Files

c3e0afdb57b7560fd9a6681a8ddcf460_NEIKI
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.vxil0
Size: 1.1MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vxil1
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vxil2
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vxill
Size: 242KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vxilx
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vxil3
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vxil4
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ