6a0384fb6ddd356b2c3c549109d98320_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

6a0384fb6ddd356b2c3c549109d98320_NeikiAnalytics
Size

70KB
MD5

6a0384fb6ddd356b2c3c549109d98320
SHA1

2c5e0d1293b59e43eed037e10bc823e3b1524ed7
SHA256

40e02fbcd5abb3be278ada9e72a032006e41d5ccebd6c984cb50216d4d608242
SHA512

d86a44ff6d842afbbfd49b54e8afdaf76fd98a0b51c09177b1be642b2771544f619a3166af5d2c42e33ba17e89156ca33bd87882626f8d6d0ccd06dce989d7e7
SSDEEP

768:BXNieVpPp0pXCPqcsfTGlqur/Ueqlu+y26QWQiwgk1os6:pNi8p0RCP8TGlquYeqlu+yHQWQHN1+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a0384fb6ddd356b2c3c549109d98320_NeikiAnalytics

Files

6a0384fb6ddd356b2c3c549109d98320_NeikiAnalytics
.exe windows:6 windows x64 arch:x64

d91dbcb12faaa2783aa4edde502ca34c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\a\hdf5\hdf5\build114\ci-StdShar-MSVC\bin\h5stat.pdb

Imports

hdf5_tools

h5tools_setprogname
enable_error_stack
H5E_tools_min_id_g
H5E_tools_g
H5tools_ERR_CLS_g
H5tools_ERR_STACK_g
h5trav_visit
h5tools_setstatus
h5tools_getstatus
h5tools_init
h5tools_getprogname
warn_msg
error_msg
print_version
h5tools_fopen
h5tools_get_fapl
h5tools_error_report
h5tools_close

hdf5

H5Pget_layout
H5Pget_external_count
H5Pget_userblock
H5Pget_file_space_strategy
H5Pget_file_space_page_size
H5Pget_nfilters
H5Pget_filter2
H5Pclose
H5Sget_simple_extent_dims
H5Sclose
H5Gget_info_by_name
H5Fget_free_sections
H5Fget_info2
H5_optind
H5Fget_create_plist
H5Fclose
H5Epush2
H5Dclose
H5Dget_storage_size
H5Dget_create_plist
H5Dget_type
H5Dget_space
H5Dopen2
H5Tget_size
H5Tencode
H5_get_option
H5Tequal
H5_optarg
H5Fget_filesize
H5Tclose
H5Tcopy
H5Oget_native_info_by_name
H5Tcommitted

vcruntime140

memcpy
__current_exception_context
__current_exception
__std_type_info_destroy_list
__C_specific_handler
memset

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode
__acrt_iob_func
fflush
__stdio_common_vfprintf

api-ms-win-crt-heap-l1-1-0

realloc
free
_set_new_mode
calloc

api-ms-win-crt-runtime-l1-1-0

_cexit
__p___argv
__p___argc
_register_thread_local_exe_atexit_callback
terminate
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_c_exit
_set_app_type
_seh_filter_exe
_initialize_onexit_table
exit
_register_onexit_function
_execute_onexit_table
_crt_atexit
_exit
_crt_at_quick_exit
_seh_filter_dll

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-string-l1-1-0

_strdup

kernel32

TerminateProcess
RtlLookupFunctionEntry
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
RtlVirtualUnwind
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlCaptureContext

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 473B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d91dbcb12faaa2783aa4edde502ca34c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

hdf5_tools

hdf5

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-string-l1-1-0

kernel32

Sections

.text Size: 38KB - Virtual size: 38KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 1024B - Virtual size: 2KB

.pdata Size: 2KB - Virtual size: 1KB

.idata Size: 7KB - Virtual size: 6KB

.00cfg Size: 512B - Virtual size: 373B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 473B

.text
Size: 38KB - Virtual size: 38KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 1024B - Virtual size: 2KB

.pdata
Size: 2KB - Virtual size: 1KB

.idata
Size: 7KB - Virtual size: 6KB

.00cfg
Size: 512B - Virtual size: 373B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 473B