d730a4871bd8da26e5d40f4da3e1ee40_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d730a4871bd8da26e5d40f4da3e1ee40_NeikiAnalytics
Size

99KB
MD5

d730a4871bd8da26e5d40f4da3e1ee40
SHA1

286cf0b7a63810a124be81c94230e88cd5b59607
SHA256

52b684410f2991a49dcde252fcc07cf0b4a1d85589b3417c5270c9663c71cf45
SHA512

2f08369e8aac5f7c99bae1484b7d56be6faf9f234c5bc01750f389098d4c5e4c71172f200029db7a26182cccc8e85d3a15519c36dc1d7b9c182c51316e06242d
SSDEEP

3072:qL7KN63q57yiR3ANXvzBc5SCsu2oh40kv3VucVEB:q6weR3Wzm5Fsu6vFuP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d730a4871bd8da26e5d40f4da3e1ee40_NeikiAnalytics

Files

d730a4871bd8da26e5d40f4da3e1ee40_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

8e0e0b601ae65c7061f4d1894b657146

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceTypesA
PssDuplicateSnapshot
CreateRemoteThreadEx
CreateSocketHandle
EnumResourceTypesExA
GetNamedPipeClientComputerNameW
GetDevicePowerState
CreateTimerQueue
RegSaveKeyExA
GetLongPathNameW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 41KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE