156cdd8d3160f857b84b9bd97f589d30_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

156cdd8d3160f857b84b9bd97f589d30_NeikiAnalytics
Size

4.3MB
MD5

156cdd8d3160f857b84b9bd97f589d30
SHA1

2304b1e48f56f0d6be13202a0810bf7304d62da6
SHA256

1d2387f219715f1c6798fea6adc237615a532db020a3a5ff3377a162e7769b7f
SHA512

06776bfc58d8ff2ad0d78bc0844cc9fa9373b658037251c36e77e042fee614ab2ae87834fe5a0837d4a1fa727e4d851094b435d8f690c09de4ca0f0db430a640
SSDEEP

98304:afopcV/pn/fDZwrT6++0yMYGPJR8DiEANy+++vq0G:afopc7/KrxyMYGP7Uw4oqP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
156cdd8d3160f857b84b9bd97f589d30_NeikiAnalytics

Files

156cdd8d3160f857b84b9bd97f589d30_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

FastCheat.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ