Behavioral task
behavioral1
Sample
4aa2870a240d9b6b159b8a4763148ab0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
4aa2870a240d9b6b159b8a4763148ab0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
4aa2870a240d9b6b159b8a4763148ab0_NeikiAnalytics
-
Size
89KB
-
MD5
4aa2870a240d9b6b159b8a4763148ab0
-
SHA1
df48dd4779b346324ca32fd58d3c810ef43b3f94
-
SHA256
759f180fd6a761525e5a9ed0dacd7c381c5638bb8afb6769ee4d6ec35b8c8bfc
-
SHA512
2b22a03b2e33eda3694d1b83bd710782743de0fe5ec01d6909467da38ff989db698e6d236b6db5b6865dffc46f1f5f7c8125331d3a8366a411f3131cb9eb6c5c
-
SSDEEP
1536:aWAL/OkxsTnljt6GjbF7BV9sa7V1Ayj4m/QWR/Rlq88vlnRqPR/1aViDRknJM2ST:aDOkexJLFdrPZ1Tj4mYWR/R4nkPR/1ae
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4aa2870a240d9b6b159b8a4763148ab0_NeikiAnalytics
Files
-
4aa2870a240d9b6b159b8a4763148ab0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 60KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.g Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.qhw Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE