7d9d424e042ae9a3b9500dda102d8f80_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7d9d424e042ae9a3b9500dda102d8f80_NeikiAnalytics
Size

91KB
MD5

7d9d424e042ae9a3b9500dda102d8f80
SHA1

8556161a362cced55bf0a9270e3ca65bd72dbefa
SHA256

5c710aab102760aca4b361d8d6b35b87a578286616e18e0815bc0654a19ba310
SHA512

f44e55345a92e670b7b6c6186f617408671d366ffdb38f4dc9e4278c1c7c37fa580f5d50f21c2448b822cd7947c2fed94f9c8c7d2e3c4bc63e4814adca06125e
SSDEEP

1536:cPe9uiAUrv2jIEqVmCwqWDtGLUAXDLvi2pvqa1t3jAr5aa95ZZWaHN3420aUUR12:cWrAUrv2jSVgqWrkL3Fd1tTw5aa95F3R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d9d424e042ae9a3b9500dda102d8f80_NeikiAnalytics

Files

7d9d424e042ae9a3b9500dda102d8f80_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

e10292da1f2b05616e93e91ff17373b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCommState
LocalFileTimeToFileTime
GetSystemTimeAdjustment
GetDurationFormat
CmdBatNotification
QuirkIsEnabledForPackage2Worker
CloseThreadpool
PostQueuedCompletionStatus
GetNamedPipeServerSessionId

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 67KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE