7f9f2acc4461aa1ed487c8f99249b7a0_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

7f9f2acc4461aa1ed487c8f99249b7a0_NeikiAnalytics
Size

208KB
MD5

7f9f2acc4461aa1ed487c8f99249b7a0
SHA1

ce99b1471fe8a0ee54761d5e9c4522ac3c000ee2
SHA256

46e67d4da9152ce3fc6c494e524a1ed33a31e3746df358308cd22d1b8af007d9
SHA512

2de05fafbb8108c70f9b6eb614b2dabee4bc384bb7af2d63011ec46781d076cc416875b0562c943618cfd11ddc38e231f96fdf7c435368d559eb2137f2fa51ce
SSDEEP

3072:GgA90Z9u2rF7hngtehW4bUb5VwwkOIO8eMB+z53mLrDDAVOEneDpLx+ul1TUusqL:GZ6IKF14MUb5PhD5krDsEKedUuj7se

Score

1^/10

Malware Config

Signatures

Files

7f9f2acc4461aa1ed487c8f99249b7a0_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

12-05-1997 00:00

Not After

07-01-2004 23:59

Subject

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

6d:a2:7a:e9:29:2e:b6:dd:c0:a8:00:1d:47:6e:3b:69
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

03-12-2001 00:00

Not After

02-12-2011 23:59

Subject

CN=VeriSign Class 3 Code Signing 2001 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

28-02-2001 00:00

Not After

06-01-2004 23:59

Subject

CN=VeriSign Time Stamping Service,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

76:80:32:06:47:30:c0:30:37:44:bf:fd:0e:6f:3b:90
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2001 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Not Before

13-11-2003 00:00

Not After

21-11-2004 23:59

Subject

CN=Symantec Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Symantec Research Labs,O=Symantec Corporation,L=Santa Monica,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

86:1b:e2:e1:8f:58:b1:22:76:7f:e8:e4:3e:cf:4e:ee:f1:1b:70:03
Signer

Actual PE Digest

86:1b:e2:e1:8f:58:b1:22:76:7f:e8:e4:3e:cf:4e:ee:f1:1b:70:03

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

SimonGetClassIDArray
SimonGetClassObject
SimonModuleGetLockCount

Sections

.text
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 46KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asdfas
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3Certificate

6d:a2:7a:e9:29:2e:b6:dd:c0:a8:00:1d:47:6e:3b:69Certificate

Extended Key Usages

Key Usages

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9dCertificate

Extended Key Usages

Key Usages

76:80:32:06:47:30:c0:30:37:44:bf:fd:0e:6f:3b:90Certificate

Extended Key Usages

Key Usages

86:1b:e2:e1:8f:58:b1:22:76:7f:e8:e4:3e:cf:4e:ee:f1:1b:70:03Signer

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 106KB - Virtual size: 108KB

.rdata Size: 46KB - Virtual size: 52KB

.data Size: 1KB - Virtual size: 8KB

.rsrc Size: 7KB - Virtual size: 8KB

.asdfas Size: 32KB - Virtual size: 32KB

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

6d:a2:7a:e9:29:2e:b6:dd:c0:a8:00:1d:47:6e:3b:69
Certificate

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

76:80:32:06:47:30:c0:30:37:44:bf:fd:0e:6f:3b:90
Certificate

86:1b:e2:e1:8f:58:b1:22:76:7f:e8:e4:3e:cf:4e:ee:f1:1b:70:03
Signer

.text
Size: 106KB - Virtual size: 108KB

.rdata
Size: 46KB - Virtual size: 52KB

.data
Size: 1KB - Virtual size: 8KB

.rsrc
Size: 7KB - Virtual size: 8KB

.asdfas
Size: 32KB - Virtual size: 32KB