68cf50f13092282437179514f7b63e80_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68cf50f13092282437179514f7b63e80_NeikiAnalytics
Size

67KB
MD5

68cf50f13092282437179514f7b63e80
SHA1

d374ccfeb8a40658d0fdc1a77077b15c4c2beb1b
SHA256

2f135bcc49a70049651ee4253727e3880fd846b1dd34097778f729e97c7de111
SHA512

d2c792ae52c87ffff411d927c29aa9b0c01f55c368a66e824d2ad1b6cb48c69c4e926b7ddfbe1f19a05110f2bb4a8a3c4c5be3d0b864eabcab9dcb4e6d1f2059
SSDEEP

1536:HiefGjQtZZSfazZwjQXS3v3HaibF6yLxw0VHDGuZuy0setPzE:Hi3jEZgMZwv3Hai5F5DGYuy0p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68cf50f13092282437179514f7b63e80_NeikiAnalytics

Files

68cf50f13092282437179514f7b63e80_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

83207df7d1e6bca292927cc1edf544b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleOutputCharacterW
TermsrvOpenRegEntry
GetFullPathNameA
ReleaseSemaphore
SetEnvironmentStringsW
ConvertCalDateTimeToSystemTime
DefineDosDeviceA
SetThreadPreferredUILanguages
MapViewOfFileExNuma

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE