e970a4d8791d2de8e6d2dc6faf248940_NEIKI

General

Target

e970a4d8791d2de8e6d2dc6faf248940_NEIKI
Size

404KB
MD5

e970a4d8791d2de8e6d2dc6faf248940
SHA1

9aa5cf34d934bbe5f21c0e72b90ed76a45f7f6ed
SHA256

f7b3c0915691a6abf88f14f41e9de22b91486bed6df7347ed07fb0a4f804258e
SHA512

e6171c6cfd329cd154435da4c57fc8f826b02f37479b3f6159e642a8d0254af2aee57575e286cf4ca5da74e28fde6af63a1b37b09a1ebf281524c136f6404ee6
SSDEEP

12288:N4wFHoS/r4wnwFHoSv4R7OrxG4wFHoS/r4wFHoSPuulubE5:vOrx3m

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e970a4d8791d2de8e6d2dc6faf248940_NEIKI

Files

e970a4d8791d2de8e6d2dc6faf248940_NEIKI
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 104KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BFgLIbEX
Size: 3KB - Virtual size: 2KB

QnXpkTig
Size: 33KB - Virtual size: 33KB

lpsKQfcd
Size: 68KB - Virtual size: 68KB

IAXXUjfB
Size: 11KB - Virtual size: 10KB

BYxNdCKT
Size: 1024B - Virtual size: 705B

ggPtslcU
Size: 512B - Virtual size: 145B

gSuhDEtL
Size: 69KB - Virtual size: 68KB

EIkTLoST
Size: 4KB - Virtual size: 3KB

vWiBGeZz
Size: 99KB - Virtual size: 98KB

paAbaMLA
Size: 28KB - Virtual size: 27KB

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 104KB

UPX1 Size: 40KB - Virtual size: 44KB

.adata Size: 512B - Virtual size: 4KB

BFgLIbEX Size: 3KB - Virtual size: 2KB

QnXpkTig Size: 33KB - Virtual size: 33KB

lpsKQfcd Size: 68KB - Virtual size: 68KB

IAXXUjfB Size: 11KB - Virtual size: 10KB

BYxNdCKT Size: 1024B - Virtual size: 705B

ggPtslcU Size: 512B - Virtual size: 145B

gSuhDEtL Size: 69KB - Virtual size: 68KB

EIkTLoST Size: 4KB - Virtual size: 3KB

vWiBGeZz Size: 99KB - Virtual size: 98KB

paAbaMLA Size: 28KB - Virtual size: 27KB

UPX0
Size: - Virtual size: 104KB

UPX1
Size: 40KB - Virtual size: 44KB

.adata
Size: 512B - Virtual size: 4KB

BFgLIbEX
Size: 3KB - Virtual size: 2KB

QnXpkTig
Size: 33KB - Virtual size: 33KB

lpsKQfcd
Size: 68KB - Virtual size: 68KB

IAXXUjfB
Size: 11KB - Virtual size: 10KB

BYxNdCKT
Size: 1024B - Virtual size: 705B

ggPtslcU
Size: 512B - Virtual size: 145B

gSuhDEtL
Size: 69KB - Virtual size: 68KB

EIkTLoST
Size: 4KB - Virtual size: 3KB

vWiBGeZz
Size: 99KB - Virtual size: 98KB

paAbaMLA
Size: 28KB - Virtual size: 27KB