627354b80ff3d3ad06851a354f67cdb0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

627354b80ff3d3ad06851a354f67cdb0_NeikiAnalytics
Size

6KB
MD5

627354b80ff3d3ad06851a354f67cdb0
SHA1

917fd24f963c2875614e7d01a895cc46d7c7e807
SHA256

2fb77aef380bf52faf7442415fb9b328a38a6964dbfa97b1f77faef140b25fa0
SHA512

7e87510397de438aff8379b1ea7942903e8c90efaff2e63018e92a4541cf1986e2b6f298952b08764c3207b755044285a8850bfc613f35149f428f1e69e8b86f
SSDEEP

96:z0I9wZLrY0/6A3Mv1A2hkWg1X1nUkk/y:JKZAvt7h81X1Ukk/y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
627354b80ff3d3ad06851a354f67cdb0_NeikiAnalytics

Files

627354b80ff3d3ad06851a354f67cdb0_NeikiAnalytics
.dll windows:5 windows x86 arch:x86

01c41bde2e28b577655077042a01522f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1024B - Virtual size: 954B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 369B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ