805e2420400206c03917dd16782a9010_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

805e2420400206c03917dd16782a9010_NeikiAnalytics
Size

24KB
MD5

805e2420400206c03917dd16782a9010
SHA1

49b78ee691ef8158b7e070d32ca67f3c42ac698e
SHA256

c42e7d619c1e4d00551d3a34d52662e72090df2d021f6c9262601435ce56bf17
SHA512

305914b6e8be91221bb6b714ba0b6db36aa398fde6bc3c01c8ac35fc09302eda4ca09e18a7b5aad8c21ac9a38d654cf0496a39d994347c24ccdc06e06bccf229
SSDEEP

384:jIz4z1zAdTTdJg+Yu6GsPbQVCGPf61ucyQhe30NlISef:jIUzhITTcP8UGqg3y+S0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
805e2420400206c03917dd16782a9010_NeikiAnalytics

Files

805e2420400206c03917dd16782a9010_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

0c144496adf6d6951a8195019d714846

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateFileA
CreateMutexA
CreateProcessA
DeleteFileA
ExitProcess
GetModuleFileNameA
GetProcessHeap
HeapAlloc
ReadFile
SetFileAttributesA
SetFilePointer
WriteFile

Sections

.text
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE