Behavioral task
behavioral1
Sample
431d8dec75f92cedd002a18a269aded0_NeikiAnalytics.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
431d8dec75f92cedd002a18a269aded0_NeikiAnalytics.exe
Resource
win10v2004-20240226-en
General
-
Target
431d8dec75f92cedd002a18a269aded0_NeikiAnalytics
-
Size
494KB
-
MD5
431d8dec75f92cedd002a18a269aded0
-
SHA1
7dc052dacb5ea281011453bb93734be906bfc970
-
SHA256
7aeb7a6f7cfa96344428411ce7d75094f96177764c8b595f048b648fc903101d
-
SHA512
57aa763773575d87f05d1a31fe6deb866e9d769cdea2108d270237b262cb276b9a3098e4b6041a6bcfbbb7c37f25caee7edacf134ba06b2d90fe5ec3cd37577c
-
SSDEEP
12288:bPKL8q5/NdISsxCTZl1b6Bf8j5q4YI2oCg:bSLldIStl1mBfv4523g
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 431d8dec75f92cedd002a18a269aded0_NeikiAnalytics
Files
-
431d8dec75f92cedd002a18a269aded0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 56KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bvxzt Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.yno Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.vzkj Size: 512B - Virtual size: 4KB
.kemyz Size: 512B - Virtual size: 4KB