be769768e87f910ff995b1df35ef67d0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be769768e87f910ff995b1df35ef67d0_NeikiAnalytics
Size

56KB
MD5

be769768e87f910ff995b1df35ef67d0
SHA1

347cd128c0df2a79e6c5163a88c84cd98ca60d48
SHA256

d2447a1869f375d52ac56e3b0340fb16b560a92f5aa7cbf6fe76425637cbfce6
SHA512

64ca7decb9ab0488f70071dc39e2deb9b5776bc9c57e17cb85c1e1ee0657906ae0f21705a928435f7f5907fb603f397fa370a9c0430028d2c5a822e379fda608
SSDEEP

1536:sRjMQuj5Wwg4hNTHk/9ORPDcX6uRJ57AIjQ:sRjXu0wlhVwEAX6uRJ57AIjQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be769768e87f910ff995b1df35ef67d0_NeikiAnalytics

Files

be769768e87f910ff995b1df35ef67d0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

36db0c07e88b4dad9b1cd8093a19c24c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetComputerNameExA
CreateMutexW
EnumSystemLocalesW
IsValidCodePage
CreateProcessInternalA
GetConsoleAliasExesLengthA
EnumLanguageGroupLocalesW
SetCommConfig
FindNextVolumeMountPointA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE