5c96367de0a12240550315d34cc36420_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c96367de0a12240550315d34cc36420_NeikiAnalytics
Size

96KB
MD5

5c96367de0a12240550315d34cc36420
SHA1

17d2fe37426c860c9a6ce6ecaba66e899e5b7330
SHA256

2c66a9da0e4fd092f97e69f2d01b99f1f33de7c097156b1ce760e7301b5503c5
SHA512

5a6f2e144792502fec738c7e1d5aeb63966ba8200c73ac8f65bb02e7d3197806979e5eb51665897b1ebfa780330d942c6c3dc6f32e78d99d4c137f5bb48d5b29
SSDEEP

1536:4ij0+eYqPlOEO7i0VaozN+Uj9mF/NAENKH4ZPUeZSasnZhGBm1Vx2UmiMbuY2:4spEO7ZVp9g3K0PU+SasnZEm1H2UmiMO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c96367de0a12240550315d34cc36420_NeikiAnalytics

Files

5c96367de0a12240550315d34cc36420_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

e8b4c7662649cb440afca8c5b4f97417

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__getmainargs
_adjust_fdiv
__p__commode
__p__fmode
_initterm
__setusermatherr
_controlfp
__p___initenv
_XcptFilter
_exit
tolower
malloc
free
strncpy
printf
exit
strstr
__set_app_type
_except_handler3
_stricmp

kernel32

_lopen
_llseek
_lclose
_lread
_lcreat
_lwrite
MoveFileExA
DeleteFileA
FindFirstFileA
FindNextFileA
FindClose

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 762B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE