6d2c5861d697e51c1495c84b3eca2070_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

6d2c5861d697e51c1495c84b3eca2070_NeikiAnalytics
Size

1.9MB
MD5

6d2c5861d697e51c1495c84b3eca2070
SHA1

4476a73851a1b94de62ae48b5c23521d3c8b0b50
SHA256

37a0b6a1c250f837c366e3074876fc3d0d23c57f15105e2445888f3130fa5d25
SHA512

28a5114f87e1b8522b848d60901bb8e9aa1437cf54a260de2909d48b83ba5c7a3023414f73cd60db83908f2ccb1d1c075025efb3cce76cd61a0d79aff819faf4
SSDEEP

24576:YGI+aUUaiALmLDD3Tf/MV7wqsmftXr+MT3qIbxiuGIq:HjUn1jfEVgqtIR/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6d2c5861d697e51c1495c84b3eca2070_NeikiAnalytics

Files

6d2c5861d697e51c1495c84b3eca2070_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 224KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cohxtewn
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

p.715kfm
Size: 596KB - Virtual size: 600KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pmnp167k
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 700KB

.itext Size: - Virtual size: 4KB

.data Size: - Virtual size: 20KB

.bss Size: - Virtual size: 224KB

.idata Size: - Virtual size: 12KB

.tls Size: - Virtual size: 4KB

.rdata Size: - Virtual size: 4KB

cohxtewn Size: - Virtual size: 48KB

.rsrc Size: 102KB - Virtual size: 1.3MB

p.715kfm Size: 596KB - Virtual size: 600KB

pmnp167k Size: 4KB - Virtual size: 4KB

.text
Size: - Virtual size: 700KB

.itext
Size: - Virtual size: 4KB

.data
Size: - Virtual size: 20KB

.bss
Size: - Virtual size: 224KB

.idata
Size: - Virtual size: 12KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: - Virtual size: 4KB

cohxtewn
Size: - Virtual size: 48KB

.rsrc
Size: 102KB - Virtual size: 1.3MB

p.715kfm
Size: 596KB - Virtual size: 600KB

pmnp167k
Size: 4KB - Virtual size: 4KB