0811030bb8fa0ba631ccaf555fbd23a0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0811030bb8fa0ba631ccaf555fbd23a0_NeikiAnalytics
Size

2.7MB
MD5

0811030bb8fa0ba631ccaf555fbd23a0
SHA1

9752a7c8f0691c754ff3cac6370ffbdca92de370
SHA256

10653896161fb4da75b9fc0fb0231866ab636f3efbd11ae8e15f68335215de8c
SHA512

5303b0f266b7e44d201cc7ba3cf6a2d95503efd2692a1e8c06cec9147bf0ff28a5e746a6077e639dfe93df21d8b5f6afe60b83b9738eb8d6cd6ef447ae8f2ffb
SSDEEP

49152:UCIabjKoh9WtJM84pXbtL2tLD/4MnYYJ2ZhqSGLHkJEMx35DMnCIjtAy:RIabjKoh9Wt+frV2V8IDQA55

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0811030bb8fa0ba631ccaf555fbd23a0_NeikiAnalytics

Files

0811030bb8fa0ba631ccaf555fbd23a0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

p:\Target\x86\ship\setuptools\x-none\Flattener.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ