40314935d107d92adb9f74967b165790_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40314935d107d92adb9f74967b165790_NeikiAnalytics
Size

1.5MB
MD5

40314935d107d92adb9f74967b165790
SHA1

97bc699520766f14166e8147209a1b910cd87df6
SHA256

3a80fc092e20c92f8daa49d1a648f88bfbc8a3fb1c6d42002700ca9c41299d58
SHA512

5e1a89f16aae4b79aa4f75aeaecab95b189acc860ec008e3beef89b90e5aab03e1477e77c5d4376bdf9f0c5b37b70d5ba58f70b28c48f3727f48bcb83b25925a
SSDEEP

24576:TDt3YZ3y71rRoNk7BZpAHF8z3j5D7JaT+KVvrSrtUx:TDtoZerRokpAHF+3j5D78OBU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40314935d107d92adb9f74967b165790_NeikiAnalytics

Files

40314935d107d92adb9f74967b165790_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\_Bld\10657\7994\Sources\obj\Win32\Release\EvaluationContainer.csproj\Microsoft.Mashup.Container.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ