55a53dc6ca4c0e29c500447970b7e410_NeikiAnalytics | Triage

Sharing

General

Target

55a53dc6ca4c0e29c500447970b7e410_NeikiAnalytics
Size

25KB
MD5

55a53dc6ca4c0e29c500447970b7e410
SHA1

1ee12fa0c05420faa2071f5e9c55c4e0ae333554
SHA256

9cab3cc622ae7372142a7f4bb11be8f96f3e160e21c20c57231f281efe23038b
SHA512

e333a05996a416500b9e97457cc5c0e03e4cce9c272a3cd10920a583600e200d873453bd975da00febc50502557a6dd2e6bf2b4e24043f6602296617063e89c3
SSDEEP

384:+hMfg/iPyaByVo7GVQtCCBFywxpB3NE6d7v6NZ84XKJ49ocRJLz2:+CfWiKzoqcCwNx3dxIYcvLK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55a53dc6ca4c0e29c500447970b7e410_NeikiAnalytics

Files

55a53dc6ca4c0e29c500447970b7e410_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

c0ca8fb524d53a294a75f3adfde9e816

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
VirtualAlloc
GetProcAddress
LoadLibraryExA
GetModuleHandleA
VirtualProtect
ExitProcess
GetModuleFileNameA

user32

MessageBoxA

Sections

.data
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_cod
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_rsc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ