bd349f569948ad3a9b3f0382a49ef6b0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd349f569948ad3a9b3f0382a49ef6b0_NeikiAnalytics
Size

467KB
MD5

bd349f569948ad3a9b3f0382a49ef6b0
SHA1

26a9b7d269905823d607163b7daa40e6cc39c532
SHA256

0946590bd5c4a779cf8ca0ced2f0aa8f3663b0759cb5945c91bea3b9bcff1182
SHA512

2c790a82e2667016bc40b0aa483c316f29e7ee3f076aa28f9f52da9e1c09b79b19bc9487c4ff8e6c7682ee486396bb7151cff07cfa36ea4299a1c7954def1be0
SSDEEP

3072:KR4jdNqTqHLklZpb4RrRDwRQjZ3phRrbpgmQ+:UafcE1xph8mQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd349f569948ad3a9b3f0382a49ef6b0_NeikiAnalytics

Files

bd349f569948ad3a9b3f0382a49ef6b0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

3e3d633779e35448851e7a9ca7e72522

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

ole32

CoInitialize

Sections

.MPRESS1
Size: 163KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 199KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.l2
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ