Behavioral task
behavioral1
Sample
a695d620ae122df3d1efce721d75fbd0_NeikiAnalytics.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
a695d620ae122df3d1efce721d75fbd0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
a695d620ae122df3d1efce721d75fbd0_NeikiAnalytics
-
Size
1.4MB
-
MD5
a695d620ae122df3d1efce721d75fbd0
-
SHA1
a8f84438fcfbcc388e5cd414dbb66b0680482b99
-
SHA256
2a7dee6dc5a16d5083571db4ca299de9a21c98fa4d556b71930ddc758a2e5c02
-
SHA512
9035fc055185f8165738a7e3ef92935ecbb1a46906418eac6e7ee4809b04f5812d711195e645e7bb749237eb6b336638621cbd1ab99e3e230efba98367be0a34
-
SSDEEP
24576:V+biHCXfOf05f6UZ7eTzONzcP2ddHW4qKG8CvUzX64CHBoAHATOoXde4KZYx0:MpXmc5f6UZ7isrW4qMCv7oLO94Nx0
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a695d620ae122df3d1efce721d75fbd0_NeikiAnalytics
Files
-
a695d620ae122df3d1efce721d75fbd0_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 68KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 36KB - Virtual size: 40KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE