6deccfcbd27c99ee36c9a389621db3b0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6deccfcbd27c99ee36c9a389621db3b0_NeikiAnalytics
Size

36KB
MD5

6deccfcbd27c99ee36c9a389621db3b0
SHA1

3ea62c2ca9db232fbd683279f3c8465c399e320a
SHA256

339a2eb2ef88f1a3deb1ec5720426877954f139570afce77990b74d18036b3a7
SHA512

7472473a91db3a65f7a617b902323c0a02d89d3409581f47007f913be50f3e0d6a339e5f5187d16a0498169dd88f50ac58381c786542728cbdd6dd6df55af145
SSDEEP

768:EjyIFJNG3MyZCHI7gAreG9o82OLtJ42TSjXB:Ez0cHI7gAreG9o8X82QB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6deccfcbd27c99ee36c9a389621db3b0_NeikiAnalytics

Files

6deccfcbd27c99ee36c9a389621db3b0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\_git.CONCERTO.618.00\.Net\ArpegeCommun\trunk\Sources\NamedPipe\PipeServer\obj\x86\Release\PipeServer.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ