Behavioral task
behavioral1
Sample
59b8b6c88a7a650b7c4d14c82e1e1ad0_NeikiAnalytics.exe
Resource
win7-20240221-en
General
-
Target
59b8b6c88a7a650b7c4d14c82e1e1ad0_NeikiAnalytics
-
Size
75KB
-
MD5
59b8b6c88a7a650b7c4d14c82e1e1ad0
-
SHA1
dc2c7fa168e2f785ab4d8e02a73b4c179f4f78b1
-
SHA256
ede6ff076ef159f2a367aa06984ccf73e021df60c08c55ff1f0c8aa672485829
-
SHA512
cff3283b0fb2b36542e592d0755c262f8a2b1f13635a8f74541eb7244343ae6de97094e37de779c42e5f6d6ab7ca89cc82c618fb7c2e86b925294da809094601
-
SSDEEP
1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8PbhnyLFWoFLAxZhMDzE87V:9hOmTsF93UYfwC6GIoutz5yLpOSDRV
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 59b8b6c88a7a650b7c4d14c82e1e1ad0_NeikiAnalytics
Files
-
59b8b6c88a7a650b7c4d14c82e1e1ad0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 104KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 40KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.code Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE