93ae32b875a0e7e9637417608daaa170_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93ae32b875a0e7e9637417608daaa170_NeikiAnalytics
Size

133KB
MD5

93ae32b875a0e7e9637417608daaa170
SHA1

6e0e7a1ea9d1bbb76474daa65b0e145b6548cc87
SHA256

d02f4f2ac64c9ef6d13b8979db5feb1533c7d8f41cfdd951108326db0cd92c1d
SHA512

44bc2f9870c5aba7f0e4edf5c8e2298e4a0c8c4d63c7b8b288a48c5cd8f289f944d4189d43dd61bddce4f0d25ec1b8d35b266944bbf1d3faecc4b4ee1c9c761e
SSDEEP

3072:rb9HEVezPG+OSu41DOkh+F5JYSNXxJT69Vs8XVr8YQA:H9VP9OSu41KB7KSVYs8Xh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93ae32b875a0e7e9637417608daaa170_NeikiAnalytics

Files

93ae32b875a0e7e9637417608daaa170_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

d7d677376ef43471714277b055d53a2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

IsValidURL
RevokeFormatEnumerator
SetSoftwareUpdateAdvertisementState
URLOpenBlockingStreamW
WriteHitLogging

msvcrt

_clearfp
_close
_commit
_commode
_control87
_copysign

kernel32

CreateMutexA
CreateNamedPipeA
CreatePipe
CreateProcessA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE