1fd37c893e16fb9c7fba71ff0605e6d0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1fd37c893e16fb9c7fba71ff0605e6d0_NeikiAnalytics
Size

1.9MB
MD5

1fd37c893e16fb9c7fba71ff0605e6d0
SHA1

30790d86bc00a4d7ba9939811761423e843da130
SHA256

27b0b65e73c851b28c5c65f534db33527c408a5edfaad1a2cecba83b88817b3e
SHA512

d67cf417222dd12126b1e31d453e178393a52a10ac86f86cb9e1f02261e69bc7b15bed400c3da0b13b014c292550328c72bc8ed528653babf5df2cb1873ed2a1
SSDEEP

49152:ISlNHydXboE+2pKWTvP6p9kB/GS0fsXCFp:ISjydNCYn0+O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1fd37c893e16fb9c7fba71ff0605e6d0_NeikiAnalytics

Files

1fd37c893e16fb9c7fba71ff0605e6d0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 36KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fykeapla
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mfitzlay
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE