43ab510f746fab7e1e74adbb84a38480_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43ab510f746fab7e1e74adbb84a38480_NeikiAnalytics
Size

316KB
MD5

43ab510f746fab7e1e74adbb84a38480
SHA1

edab71ae9c8d47a4339bb940fb5dbe99ea5f0a69
SHA256

96057bbd934cfa5045b44bd4c3215ed6c23f67f668fb38ff68977db9115cf356
SHA512

cf29be5c71c23fa69daf1d2a83d3db437c360a46d70d5dcaa1dc3b4673fcf6055093a5067f5e6edc8700757d95e80fe277823100d93f6ae0e8826b08360a4221
SSDEEP

3072:L+iwiDdbSvA9zE99FwsBrUj80Bcu85wpv+BZTrHIi1UGRP5SWcjghBHxThkGXHwl:twiMRwyJHox2proiN3XHxThkQHwv

Score

1^/10

Malware Config

Signatures

Files

43ab510f746fab7e1e74adbb84a38480_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

4b9f1b5c85a77172c68dc5fdb8a4ed3c

Code Sign

27:d8:36:7f:bf:5d:53:50:b7:65:fa:52:12:93:27:31
Certificate

Issuer

CN=dap4cs.com,OU=Generated by DAP4CS Installer,O=dap4cs.com

Not Before

13/01/2021, 12:35

Not After

31/12/2039, 23:59

Subject

CN=DAP4CS - Diagnostic Adapter Plugin for CarmanScan

54:9e:e4:fe:11:8c:d0:a4:41:00:84:c3:86:15:f3:b0:04:f6:1e:6d
Signer

Actual PE Digest

54:9e:e4:fe:11:8c:d0:a4:41:00:84:c3:86:15:f3:b0:04:f6:1e:6d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
WriteFile
FreeConsole
GetConsoleWindow
AttachConsole
CloseHandle
ExitProcess
SetFilePointer
Sleep
ReadFile
GetLastError
VirtualAlloc

user32

PostMessageW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ