Static task
static1
Behavioral task
behavioral1
Sample
257570758811ac4044697475fc4029a0_NeikiAnalytics.exe
Resource
win7-20240220-en
General
-
Target
257570758811ac4044697475fc4029a0_NeikiAnalytics
-
Size
946KB
-
MD5
257570758811ac4044697475fc4029a0
-
SHA1
d5fe8288f223e0ee834a48ad598be36f77d57c1b
-
SHA256
f42006eb8aa5ddc81ea0870223286e634866b17d52f5f796bd2e0f4c54331b09
-
SHA512
6288fe50c75749b050572dc80501e9b90e73f3b7e88e14170b71768f99f591160463cd701868eae66eb6fafc1a3c5d5ac690625ba44ecc15f1d8648392d02c91
-
SSDEEP
12288:4I2lUgIwkivJah9F4a0anwDDqbsw0w+F4eHiOgQRam5kCUco95D6tFF:R2lewPaTF3n+lp1VCOHammAMl6tF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 257570758811ac4044697475fc4029a0_NeikiAnalytics
Files
-
257570758811ac4044697475fc4029a0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 940KB - Virtual size: 940KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ