c42b0c3b64f38d2238a3ef3d403efba0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c42b0c3b64f38d2238a3ef3d403efba0_NeikiAnalytics
Size

119KB
MD5

c42b0c3b64f38d2238a3ef3d403efba0
SHA1

cc690a4dbc935cd7e85f51daa5db7031c64a7544
SHA256

b9de348617909dd26bf3b3d4c48965ca4eb8f81c238c2ca722690c811d49c28c
SHA512

a5e6d63871f3ca93e4e84334e0a1122089e1117cd495b94d00a0f10ffa592542ecc60a33dfa594d445498e341605d202a55c202de5e27540196a0745d55ba2aa
SSDEEP

3072:O+YX89UvL0CV7LouMFNWldofU9UU3p6wjOThjqmdn0Gs0mha/A:z884TWCl2fUCUMwGj30wm6A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c42b0c3b64f38d2238a3ef3d403efba0_NeikiAnalytics

Files

c42b0c3b64f38d2238a3ef3d403efba0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

41357cc1429e084a2664f455a1893bd8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnWire
FlsGetValue
K32EnumProcesses
GetPrivateProfileStringA
CreateTapePartition
CommConfigDialogW
SetHandleInformation
EnumSystemGeoNames
SortCloseHandle
WaitForThreadpoolWorkCallbacks

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE