d93503c42bd29b134e7a12ec1f1840e0_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d93503c42bd29b134e7a12ec1f1840e0_NeikiAnalytics
Size

916KB
MD5

d93503c42bd29b134e7a12ec1f1840e0
SHA1

e9bfbae56bce90334b9aac2250fbd06de5b3c0e7
SHA256

8b5ac48241ed5ef0f37bc09961349d2b07e836996000aa8d5cc6f564d55c55d1
SHA512

d103a1f32bf9aa498f685d72a80584cb8fdd422251584da69e6ef5581c249b822334c672d788a7a379181dd75c6bbafb706c01b6334e9f14698fd230ed4c25fa
SSDEEP

6144:1CgYgGRDTFiXPQiGNy6tC3d+HLEjz9uwy6tC3d+HLEj:4yv+HLEjzbyv+HLEj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d93503c42bd29b134e7a12ec1f1840e0_NeikiAnalytics

Files

d93503c42bd29b134e7a12ec1f1840e0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

44ff0a852b40289ff2085cc27e8d026a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleW
GetStartupInfoW
GetCommandLineW
SetCurrentDirectoryW
GetModuleFileNameW
GetProcAddress
FreeLibrary
LocalAlloc
InterlockedExchange
RaiseException
GetLastError
LoadLibraryA

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 492KB - Virtual size: 488KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 400KB - Virtual size: 397KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ