6932fee9e52575738fec4f65f1050c60_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6932fee9e52575738fec4f65f1050c60_NeikiAnalytics
Size

55KB
MD5

6932fee9e52575738fec4f65f1050c60
SHA1

9e9f0b2d615addefb59a1d0688317a9d4a7b909c
SHA256

4b5fdfd7e161566966992700434dbaa90fce6320464d7540292ea3eafe0f8e62
SHA512

93d56fc037ef8811089ca57f329ea1db0a3f8ef625cc205624d3ccd7edb656be24dbe1e0f337e2b68b6c67582bf9ed42d64d25a66a180c3e5324efcfa0c849fb
SSDEEP

1536:M5lphxz/k26gvj8BoJ8Bvb4hs9V+G9TzxmHb:qhp6gQBoJYj4hIV+2Td

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6932fee9e52575738fec4f65f1050c60_NeikiAnalytics

Files

6932fee9e52575738fec4f65f1050c60_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

e43d801a09094fe781c307e836c070a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

OffsetRect
LoadAcceleratorsW
EndDialog
DrawTextA
CreateMenu
CharPrevA
CharLowerA

kernel32

SetEndOfFile
lstrlenA
lstrcpyA
lstrcatA
WriteFile
VirtualFree
TlsSetValue
TlsAlloc
EnumResourceLanguagesA
EnumResourceLanguagesW
EnumResourceNamesA
ExitProcess
FreeResource
GetStartupInfoA
GetVersionExA
InitializeCriticalSection
LeaveCriticalSection
LoadResource
LocalAlloc
OpenFile

oleaut32

SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCreate
SafeArrayDestroy
SysFreeString
SysReAllocString
VarBstrCmp
ClearCustData
GetErrorInfo
OleIconToCursor
OleTranslateColor

Sections

.text
Size: 18KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ