418dbca8abddeeeae1e106a99221db50_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

418dbca8abddeeeae1e106a99221db50_NeikiAnalytics.exe
Size

1.6MB
MD5

418dbca8abddeeeae1e106a99221db50
SHA1

33fedfce68740fb6f45bb893bd64e5c7a01ba421
SHA256

bbc81bd4ecf3e74f667ae53ddc7616eeefb0cd925c6df47d159efe6eb18af281
SHA512

18f05c8db4c0f6147360c36147fae699181d214880298ef262a3e16950c8792ce33304258c8fe646bb7ec05795ea018583807ca442b194277ea1d05e9214b794
SSDEEP

24576:6Ss+dvBlPJPqsvKwn75UiRT32O6eBufJvFRIF6h//REblp:6TMvvLfFUmCOFuRFRjf6lp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
418dbca8abddeeeae1e106a99221db50_NeikiAnalytics.exe

Files

418dbca8abddeeeae1e106a99221db50_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: - Virtual size: 870KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.1+%
Size: - Virtual size: 673KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Gv<
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.@(Y
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ