Behavioral task
behavioral1
Sample
407f1b6b6ad242af2c2358cf68f55db0_NeikiAnalytics.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
407f1b6b6ad242af2c2358cf68f55db0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
407f1b6b6ad242af2c2358cf68f55db0_NeikiAnalytics
-
Size
694KB
-
MD5
407f1b6b6ad242af2c2358cf68f55db0
-
SHA1
8fa8a75eacb46a5cb7237b79be65aa2c700cf564
-
SHA256
379014ae197b0dcb84b771e34e59e805da0aebb74649903e9d40e03170182b12
-
SHA512
638e38f93d1679ee008183e86016d08fbd032ec9cec02e3cda84db1ff4a28726bb6698824572a92e7a0f9dc72e0e62d1c1149572a41b8a8f0391ecd1dba22724
-
SSDEEP
12288:YEQoSpqhIBwLPx92sIPdRHk4aNr6AG0D5ZWQ48wEDUz06do:YiIBw7OsIVRERrx3DzRhQ1o
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 407f1b6b6ad242af2c2358cf68f55db0_NeikiAnalytics
Files
-
407f1b6b6ad242af2c2358cf68f55db0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 68KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 36KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ktlju Size: 512B - Virtual size: 4KB
.wu Size: 512B - Virtual size: 4KB
.shik Size: 512B - Virtual size: 4KB
.nbd Size: 512B - Virtual size: 4KB