Behavioral task
behavioral1
Sample
3776e41f4b75b0fa6c0e00262ec2e3a0_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
3776e41f4b75b0fa6c0e00262ec2e3a0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
3776e41f4b75b0fa6c0e00262ec2e3a0_NeikiAnalytics
-
Size
189KB
-
MD5
3776e41f4b75b0fa6c0e00262ec2e3a0
-
SHA1
effd6b3906c556b1ed49d2fb8ed1ca1025895122
-
SHA256
17f1bf539ec5c1311a30b8233e6bfd3dcfeedd863320014636671518f18d7503
-
SHA512
c72c2a11b4ecd75e68a54c6caf216304f5094cea780f48f69ea11438b6cf8cfe6f93bbb8d6819e4ec9afe49360c8f7d5443e4f54143037158947b39e94df4fb9
-
SSDEEP
3072:VjbLl/gvQoutv4DQ1Tj4mYWR/R4nkPR/1aVuyNmoMWY9YDkGVhbFzIX7W1XnM5br:VjluQoSv4DSIo5R4nM/40yNZtYawGVh6
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3776e41f4b75b0fa6c0e00262ec2e3a0_NeikiAnalytics
Files
-
3776e41f4b75b0fa6c0e00262ec2e3a0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 68KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 36KB - Virtual size: 40KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE