1e7e48a6c8b01a28fd70725a81d64440_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e7e48a6c8b01a28fd70725a81d64440_NeikiAnalytics
Size

59KB
MD5

1e7e48a6c8b01a28fd70725a81d64440
SHA1

ecc5caee9e8ca8aaee2a1a82bd2a7abb1dab8cd8
SHA256

6381af1a0c919c3bf19511c8aa3d38547d8b44abee1d8b8173791bdf9e1788f9
SHA512

e4bf283efc25da2f5b605db9825daf8815944c9fa2690857b36c3d8cdac4283b9fbdfa985e2c6f3abcf94e1736d7ba7f4d683266ba73dbaec2720a961f822dd1
SSDEEP

768:JJvTUbxidfOBmU7KA7vTHrYzo6XcFoOgc7iHb0kxg0Ry3KQUNBsUyZP1l4F:JRU4I7vTHrYzcP7i430QM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e7e48a6c8b01a28fd70725a81d64440_NeikiAnalytics

Files

1e7e48a6c8b01a28fd70725a81d64440_NeikiAnalytics
.sys windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

sysaudio.pdb

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

PAGEDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ