8ed8bd8709415eb023362e2e7bce58d0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ed8bd8709415eb023362e2e7bce58d0_NeikiAnalytics
Size

99KB
MD5

8ed8bd8709415eb023362e2e7bce58d0
SHA1

2d56e71f25b527a82eb5f49f65557c2935926028
SHA256

1fa9b8a18376e8b16a0ee106830332d9e67f5b6a89e25817b0caabd54af2fc8d
SHA512

dbd344a0841cb8c1f498c9edd34667cde56257c52393c8b89c7cb59975a0e67659e242c323e4d881e47349f47e47b19ab26b3edb20a681d29921f356206839d4
SSDEEP

3072:t0ZeFe7KvJj44PtYMSR5SCsu2oh40kv3VucVEB:QeZvP6R5Fsu6vFuP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ed8bd8709415eb023362e2e7bce58d0_NeikiAnalytics

Files

8ed8bd8709415eb023362e2e7bce58d0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

39a3820de129949d30bab27898120b7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
GetConsoleAliasesA
GetSystemCpuSetInformation
PackageFullNameFromId
MulDiv
GlobalUnfix
GetApplicationRestartSettingsWorker
TermsrvRestoreKey
NlsUpdateSystemLocale
VirtualAlloc

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 41KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE