518a9315c3dfe5812d305c7224e7ab00_NeikiAnalytics | Triage

Sharing

General

Target

518a9315c3dfe5812d305c7224e7ab00_NeikiAnalytics
Size

99KB
MD5

518a9315c3dfe5812d305c7224e7ab00
SHA1

bc4421d5062961e24d53b10ed4ec5cbfa07b1676
SHA256

43fcef2e80f01b2142a763ca6e5bcbfc7f49180d0cc3985a912fef3e19d36acd
SHA512

fb5ef6687a427877902eec90ddccb5d03d2193dc4111753ce6a76dc441307982a5ba43415a54b66867a2efea02498661b71cd71398df2bdb38dd2bc9fe0cdcff
SSDEEP

3072:gSYDZ6B9lLLm7cKVlD05SCsu2oh40kv3VucVEB:9N9c7FHD05Fsu6vFuP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
518a9315c3dfe5812d305c7224e7ab00_NeikiAnalytics

Files

518a9315c3dfe5812d305c7224e7ab00_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

c723ed549fd4401cf1883ed6ea2e8b13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeConsole
GetExpandedNameA
InitializeSListHead
CreateNamedPipeW
HeapDestroy
GetNLSVersionEx
GetProcessHandleCount
RegisterWaitForInputIdle
GetPhysicallyInstalledSystemMemory
FindNLSStringEx

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 41KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE