2bbebd46b1e805a060d44ddfb51f1b20_NeikiAnalytics | Triage

Submit
Reports

Overview

overview

1

Static

static

1

2bbebd46b1...cs.exe

windows7-x64

1

2bbebd46b1...cs.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2bbebd46b1e805a060d44ddfb51f1b20_NeikiAnalytics.exe

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

2bbebd46b1e805a060d44ddfb51f1b20_NeikiAnalytics.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

2bbebd46b1e805a060d44ddfb51f1b20_NeikiAnalytics
Size

201KB
MD5

2bbebd46b1e805a060d44ddfb51f1b20
SHA1

42ae620d7f70893b8f04a349697dc670f84d876b
SHA256

9c195265d0b07298a2c548aa2e38b42d06e33f5323bda64a45a15151ab8dc0ac
SHA512

f894e15ad8465fe6b9435e94de1c3de3bb767176b91dd383899d264caebb07f26a6e764cebcb5745c7d18875485df53b2abf6e45608558bebc90156d13220942
SSDEEP

3072:QvH9dLI6ud0OLdYRtkDIclwt8c32sPHU3HT6mM7v6IjCdUH+tzQlCbSbzjBHyQ9I:QvdtTm1IFwhY/+Ubb8pNFDzIE

Score

1^/10

Malware Config

Signatures

Files

2bbebd46b1e805a060d44ddfb51f1b20_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

16:87:18:23:f3:13:35:8f:47:c7:b9:29:2d:6c:7d:35
Certificate

Issuer

CN=GlobalSign GCC R45 CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

31/12/1999, 22:00

Not After

31/12/2098, 22:00

Subject

CN=EMD International A/S,O=EMD International A/S,L=Aalborg,C=DK,1.2.840.113549.1.9.1=#0c0a656d6440656d642e646b

54:a5:d2:60:1d:6d:0a:36:9f:4c:cc:b7:e3:6e:42:e1:48:54:74:e8:a7:cf:3d:bb:2c:4c:ac:24:3a:f4:d5:66
Signer

Actual PE Digest

54:a5:d2:60:1d:6d:0a:36:9f:4c:cc:b7:e3:6e:42:e1:48:54:74:e8:a7:cf:3d:bb:2c:4c:ac:24:3a:f4:d5:66

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy