3a04098fad3978a014e0c00edeebaaa0_NeikiAnalytics | Triage

Sharing

General

Target

3a04098fad3978a014e0c00edeebaaa0_NeikiAnalytics
Size

37KB
MD5

3a04098fad3978a014e0c00edeebaaa0
SHA1

894a6282e1271d9d69edf94d42a5dd9ff757f786
SHA256

3a7cb1b2fba894aee43313bac81e0c21c2198404ccbf962a52fad245305c882a
SHA512

f408975ad04c6119a1d597da2bd03041ca7b8764fe58e955a74301c4eaa417b2d53e3d0caa1ec6afe107eb1a8b7f206b33f47fe011f9cb6f1f88e7c817cd53f5
SSDEEP

384:H0NqwaXklRRvZxMR5QYKZseH5eAXZkbXSm1RaS3aUuCXpkL+hy:H0NqwbTzQDKVeA2bfaS3aUPy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a04098fad3978a014e0c00edeebaaa0_NeikiAnalytics

Files

3a04098fad3978a014e0c00edeebaaa0_NeikiAnalytics
.exe windows:5 windows x86 arch:x86

f08fb13efbf8ba797507962ac13ecc2f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cabinet

ord13

gdi32

CreateDCA
GetWindowOrgEx
SetWindowOrgEx

kernel32

GetModuleHandleW
GetProcAddress
ExitProcess

Sections

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ