00749afdeb0cff61c868b391031fdcc0_NeikiAnalytics | Triage

Sharing

General

Target

00749afdeb0cff61c868b391031fdcc0_NeikiAnalytics
Size

1.0MB
MD5

00749afdeb0cff61c868b391031fdcc0
SHA1

90d26655c52bc2a63b8f482f6ca845945c41c9cb
SHA256

6f949c7461ecde1eb2fdc98b0ced113dfb4cc9a71073313aaad9ff4a5d5f126a
SHA512

b2ed6bae6ce6bec8c52780c5dc8cc8924ffa9e91ec999cffe5ecfc23fb88a0762eec89643b9d3e649325aec1b51b6f6a814d1aea3722a71fe92b84d86c004e1c
SSDEEP

12288:9iu5Fx/DxV7rD0KImt0LDTdB3IV3zKQCACm/UbazurlB8:9xzfadB3IAQH8bDlG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00749afdeb0cff61c868b391031fdcc0_NeikiAnalytics

Files

00749afdeb0cff61c868b391031fdcc0_NeikiAnalytics
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

appvlp.pdb

Sections

.text
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c2r
Size: 512B - Virtual size: 180B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ