43c902aa1a1b12a31cb3c49b07f91c30_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43c902aa1a1b12a31cb3c49b07f91c30_NeikiAnalytics
Size

56KB
MD5

43c902aa1a1b12a31cb3c49b07f91c30
SHA1

8a981255cd933b85a601babbc88af68787b2a7fd
SHA256

ee5cddeea5e2fa6920e5925c1e8063d6b7b4044bb4b506fdf770b60733c57579
SHA512

624e01b4e16ce396ee07541c5e129dfb89cf1b7556a9f1fac2855d59f0dbe9fe44b98067fd18f222cb3ecbf68707cfcce0e5958fe6b5011de7d5913272530755
SSDEEP

768:OQQPUn8Df0zPg/DpySr2EnvmShVZ35Ytm68IXCT5iB9nNfVtrBeo5M:+TfUPFWX+S3Tr68IXCOfgo5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43c902aa1a1b12a31cb3c49b07f91c30_NeikiAnalytics

Files

43c902aa1a1b12a31cb3c49b07f91c30_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

05e54580ae3390cce0c39caa782cc506

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
GetLastError
SetFilePointer
CloseHandle
ReadFile
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetModuleHandleA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
VirtualAlloc
HeapReAlloc
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE