3b1b990d7cf9305ad6712c5ca3f2f3c0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

3b1b990d7cf9305ad6712c5ca3f2f3c0_NeikiAnalytics
Size

9KB
MD5

3b1b990d7cf9305ad6712c5ca3f2f3c0
SHA1

1d9264654cc338f37a86d12f2e49d0ab6f5695a3
SHA256

c11ae5ff2bf0e3344cb1d5d8c1cf7ecab4f3fe515f52ae4d7febc2470d91f854
SHA512

69148bc39dd661ea602b81109c5feb2a3555493e641e99d5c36847b3b6a08918b30b8320b6ed128d102fcd8d87a6596b1c4f56f8fa58fbb27a01584de35d1bac
SSDEEP

192:E3iHymYdmGKyZMbm+B4PkOv5/JFuVTfzq6N:E3H4KT+GPkOvX6D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b1b990d7cf9305ad6712c5ca3f2f3c0_NeikiAnalytics

Files

3b1b990d7cf9305ad6712c5ca3f2f3c0_NeikiAnalytics
.dll windows:5 windows x86 arch:x86

a0285e7dc6dd6d351f16374f9f520613

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

core_rl_magickcore_

ConformPixelInfo
AcquireImage
SetImageExtent
SyncAuthenticPixels
QueueAuthenticPixels
LogMagickEvent
RegisterMagickInfo
UnregisterMagickInfo
AcquireMagickInfo
DestroyImageList
GetFirstImageInList

vcruntime140

__std_type_info_destroy_list
_except_handler4_common
memset

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_execute_onexit_table
_initialize_onexit_table
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_cexit
_initialize_narrow_environment
_register_onexit_function

kernel32

IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter

Exports

Exports

RegisterNULLImage
UnregisterNULLImage

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0285e7dc6dd6d351f16374f9f520613

Headers

DLL Characteristics

File Characteristics

Imports

core_rl_magickcore_

vcruntime140

api-ms-win-crt-runtime-l1-1-0

kernel32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 904B

.gfids Size: 512B - Virtual size: 20B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 356B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 904B

.gfids
Size: 512B - Virtual size: 20B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 356B