10ca66b7777a076faee5890f578d6200_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10ca66b7777a076faee5890f578d6200_NeikiAnalytics
Size

512KB
MD5

10ca66b7777a076faee5890f578d6200
SHA1

a8fb29d73a7f056b397e7b5ee00aeadbb24f54c1
SHA256

4370ddd3969d657d5e01639c31eac106eedf2fd5937e99a4d8f74bd5f4e15b09
SHA512

9325087c69555607e560d6f44c6dd9d291452b4decbbcad99f2f6e428ce61bf91bd28d8e266e07953de790504b315aca6caa35ba46f0e55e4c849e927f41d490
SSDEEP

3072:Mn8TNGG0oRkZ2GGadzpJCGGH4XW8Qxs3NGGU95Yjs+:e4coiXd9e4m8Qxos9aj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10ca66b7777a076faee5890f578d6200_NeikiAnalytics

Files

10ca66b7777a076faee5890f578d6200_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\it\My Documents\Visual Studio 2005\Projects\WindowsApplication2\WindowsApplication2\obj\Debug\WindowsApplication2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 500KB - Virtual size: 499KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ