aa1fe536cb98200daeeddff76e956e50_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

aa1fe536cb98200daeeddff76e956e50_NeikiAnalytics
Size

2.3MB
MD5

aa1fe536cb98200daeeddff76e956e50
SHA1

a4f3845b67976ec9faaba78650f4efde3af21b21
SHA256

ca0558ea1219f2278af0eb483f6d3159d356f1c08dcaf8bd68eb8360ab2217b6
SHA512

f971b62b32a9dbf40d216191378c9289af6d8bdf1cb02539c0ed3baeb8472012a8d3dad2def7f2969c5711664b4039c30348929bf65259825fa520dd36018d5b
SSDEEP

49152:SlGT4IpXPqBwB3Bts0wdOCI8RxCxctjwJDwseZSSt5wAoNwn7Z4T7t:NPXPCWk0Ft8QJ4Sdwn14

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa1fe536cb98200daeeddff76e956e50_NeikiAnalytics

Files

aa1fe536cb98200daeeddff76e956e50_NeikiAnalytics
.dll windows:5 windows x86 arch:x86

41b1031b537e65994e48469f5a498b6a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
GetUserDefaultLangID
WaitForSingleObjectEx

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 93B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9YXw
Size: 1.1MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Z
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

O
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 460KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.erloc
Size: 628KB - Virtual size: 626KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

O|6pf
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41b1031b537e65994e48469f5a498b6a

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 32KB - Virtual size: 29KB

.idata Size: 4KB - Virtual size: 93B

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 88KB - Virtual size: 86KB

9YXw Size: 1.1MB - Virtual size: 1.0MB

Z Size: 36KB - Virtual size: 34KB

O Size: 8KB - Virtual size: 4KB

.qdata Size: 460KB - Virtual size: 457KB

.erloc Size: 628KB - Virtual size: 626KB

.rsrc Size: 4KB - Virtual size: 1KB

O|6pf Size: 36KB - Virtual size: 35KB

.text
Size: 32KB - Virtual size: 29KB

.idata
Size: 4KB - Virtual size: 93B

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 88KB - Virtual size: 86KB

9YXw
Size: 1.1MB - Virtual size: 1.0MB

Z
Size: 36KB - Virtual size: 34KB

O
Size: 8KB - Virtual size: 4KB

.qdata
Size: 460KB - Virtual size: 457KB

.erloc
Size: 628KB - Virtual size: 626KB

.rsrc
Size: 4KB - Virtual size: 1KB

O|6pf
Size: 36KB - Virtual size: 35KB