54ffed65d7d82d0ed866d2f7b26f5230_NeikiAnalytics | Triage

Sharing

General

Target

54ffed65d7d82d0ed866d2f7b26f5230_NeikiAnalytics
Size

38KB
MD5

54ffed65d7d82d0ed866d2f7b26f5230
SHA1

0555431e401cd642a8f4fa725d56f17ad864e9de
SHA256

b5c8264b7282a302dc5a1c81ffac09223bd30f1c213919dceda6558ad9438c2a
SHA512

91e04793b3c1ecb5a2375a752420686950810a8b8ddc6262a069c6cf8cdf37182c30eae8b804963afe7321cfbfb47a20efdef4b806e48b67cb977bbf0a63eb91
SSDEEP

768:U79ycqcWPOwnRZcdNe5vTZ8K5pDhJKxdQlY+LmV+1F+ZJHjBb:U79y5HWw0Md8+pD7Kqx/S/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
54ffed65d7d82d0ed866d2f7b26f5230_NeikiAnalytics

Files

54ffed65d7d82d0ed866d2f7b26f5230_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

bc2e6e792857729fcfb2814962a714f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

OemToCharBuffA
IsCharUpperA
FillRect
EndDeferWindowPos
EnableWindow
EmptyClipboard
DispatchMessageA
CharPrevA

kernel32

FindResourceA
GetModuleHandleA
FreeResource
ExitThread
EnumResourceTypesA
lstrlenA
lstrcpynA
VirtualFree
EnumResourceLanguagesA
EnumResourceLanguagesW
Sleep

oleaut32

OleLoadPicturePath
RegisterTypeLib
OleLoadPicture
OleIconToCursor

Sections

.text
Size: 20KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ