ddbd3b20df7749dc580929c830905020_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddbd3b20df7749dc580929c830905020_NeikiAnalytics
Size

26KB
MD5

ddbd3b20df7749dc580929c830905020
SHA1

7d20cb2d3ac03f2c070b0d937c7b30ae99d1dcf1
SHA256

7fd2cb0b97ebfa47b12f00009d7973f26b8e485b9fd8517cd717889b1399a2e7
SHA512

ed4139d89e7d459b62ddb1eb60ea75813a7e10cb300a2d8e8f0ad32cec74a92de3babd4dbdb37fa1d36c24d65b2056b06406b1831f9fdccc0d9b78614b6ff48d
SSDEEP

384:ZhioEu21lJkgZRRQS6c4WtoLVD8WIOkgZRTJP2Ip+h/c4WtoLVD8W1GZWNXGW:KMytoL54IsZytoLH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddbd3b20df7749dc580929c830905020_NeikiAnalytics

Files

ddbd3b20df7749dc580929c830905020_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Projects\WpfGauge\Samples\C#\Thermometer\obj\Release\Thermometer.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ