c3320a82f2445b0ba03733ae21bacf80_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3320a82f2445b0ba03733ae21bacf80_NeikiAnalytics
Size

62KB
MD5

c3320a82f2445b0ba03733ae21bacf80
SHA1

c587505759e299359da3c244056cb7d3b3fea719
SHA256

2e4bb2010025cf179c42a8e18e0216e75f8ea6cdcdc6cdadaabb4f626a25cf8c
SHA512

fb6415a9c29793fe02e20b4e5aca0c2b2828f68c0bcdc4d37d213e32c265a101a0269a988f8e561a1d603cacf621581e38ebfe056e60a472bda0e4086faed5fd
SSDEEP

1536:FmAsLstuiLcQ/O2swEmB9l94cNj9ueMt5aeSfD:FBsLstkQ0GT4c3CFS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c3320a82f2445b0ba03733ae21bacf80_NeikiAnalytics

Files

c3320a82f2445b0ba03733ae21bacf80_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

750f366e88831ce3c8dca320bb3fb692

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DisableThreadLibraryCalls
GetLogicalProcessorInformation
WerpNotifyUseStringResourceWorker
GlobalUnfix
OutputDebugStringW
GetLogicalProcessorInformationEx
GetMailslotInfo
RegLoadMUIStringA
CreateBoundaryDescriptorW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE