Behavioral task
behavioral1
Sample
29501f47389f606758779539a10b6af0_NeikiAnalytics.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
29501f47389f606758779539a10b6af0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
29501f47389f606758779539a10b6af0_NeikiAnalytics
-
Size
1.1MB
-
MD5
29501f47389f606758779539a10b6af0
-
SHA1
32f9860e458219b6b996c38753f9f394e843a84a
-
SHA256
4727a18f528efc26ba6d4b5638a46ee2bd5eec3c438840519929ffdb264d8a48
-
SHA512
ab2ebd5ce10a73a72b3394e4d9efffe7e7f85d3e377d1263ab8f4b3f549efb6768a2ccfe25a12416a5e087483a2ab600a202eab5e287e8264e10a38e42114838
-
SSDEEP
24576:IBQo9xPGyGG8CeYPp8Tj4NCBsnvmDP9u6PhLjT:IJ9Ph834c+nvmhn5PT
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 29501f47389f606758779539a10b6af0_NeikiAnalytics
Files
-
29501f47389f606758779539a10b6af0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE