769eb7a54ddc3c379a5a767a4b51cd90_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

769eb7a54ddc3c379a5a767a4b51cd90_NeikiAnalytics
Size

119KB
MD5

769eb7a54ddc3c379a5a767a4b51cd90
SHA1

19935ce60307554ceec7b7da46566ab0f1c35f17
SHA256

bfa5d0752c213f46248aa3fe0a0059d2c1ca5f5cd3c97227fd0ac122b83d572d
SHA512

e3fd10828fb02dea5af24d7838d2e78fc95c83c0271b795673faee2145ec87bb3c68be053b043c8060eafa19aa1cbf0127dce96b6fa35de4bfb4a700304b6078
SSDEEP

3072:KAZToEE6ooqiq8EpKP1dwLFurHN1Kq2OZ+5cyhT+Y3sVvCc2Y:nd1E6dqi4py51Kmk3O2Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
769eb7a54ddc3c379a5a767a4b51cd90_NeikiAnalytics

Files

769eb7a54ddc3c379a5a767a4b51cd90_NeikiAnalytics
.exe windows:4 windows x64 arch:x64

ad1f23519bbfc8977066f6d732164041

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

Imports

cygwin1

__cxa_atexit
__errno
__getreent
__main
__stack_chk_fail
__stack_chk_guard
__wrap__ZdaPv
__wrap__Znam
_dll_crt0
_impure_ptr
abort
calloc
cygwin_detach_dll
cygwin_internal
dll_dllcrt0
exit
fflush
fopen
fputc
fputs
free
frexp
fwrite
getc
isalnum
isalpha
iscntrl
isgraph
islower
isprint
ispunct
isspace
isupper
isxdigit
ldexp
malloc
memchr
memcmp
memcpy
posix_memalign
printf
putc
realloc
snprintf
sprintf
sscanf
strcmp
strerror
strlen
strncmp
strtol

cyggcc_s-seh-1

_Unwind_Resume

cygstdc++-6

_ZdaPv
_Znam
__gxx_personality_seh0

kernel32

GetModuleHandleA

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad1f23519bbfc8977066f6d732164041

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

cygwin1

cyggcc_s-seh-1

cygstdc++-6

kernel32

Sections

.text Size: 37KB - Virtual size: 37KB

.data Size: 512B - Virtual size: 128B

.rdata Size: 3KB - Virtual size: 3KB

.buildid Size: 512B - Virtual size: 53B

.pdata Size: 1KB - Virtual size: 1KB

.xdata Size: 1024B - Virtual size: 1000B

.bss Size: - Virtual size: 3KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

/4 Size: 512B - Virtual size: 24B

.text
Size: 37KB - Virtual size: 37KB

.data
Size: 512B - Virtual size: 128B

.rdata
Size: 3KB - Virtual size: 3KB

.buildid
Size: 512B - Virtual size: 53B

.pdata
Size: 1KB - Virtual size: 1KB

.xdata
Size: 1024B - Virtual size: 1000B

.bss
Size: - Virtual size: 3KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

/4
Size: 512B - Virtual size: 24B