0645afa5b9a15b90b8a3704df8c96560_NeikiAnalytics | Triage

Sharing

General

Target

0645afa5b9a15b90b8a3704df8c96560_NeikiAnalytics
Size

9KB
MD5

0645afa5b9a15b90b8a3704df8c96560
SHA1

5adb5466e6b740f87e6b500f74212fed10145984
SHA256

2ae5cee725822158bef945debd1323373fc231730521b946f9fdce388cee661d
SHA512

7ea7937647a082e198acc2f21e0f5ddfeebd0051c0ebfc5c7a434b7a6b8b1eee12d9576923dcb06ced43a3bf6f559a3424d4ee8394bf7dfae0ab5d4a1930eb32
SSDEEP

24:ev1GS+yv1qY7CDAgFQBvePnRuV4MPgic:q+yvkY7YFQB4RuqS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0645afa5b9a15b90b8a3704df8c96560_NeikiAnalytics

Files

0645afa5b9a15b90b8a3704df8c96560_NeikiAnalytics
.exe windows:6 windows x86 arch:x86

f9ade0aa18f660a34a4fa23392e21838

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\jandl\source\repos\demo2\Debug\demo2.pdb

Imports

kernel32

ExitProcess

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 695B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 422B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 141B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ