rasacd.pdb
Static task
static1
1 signatures
General
-
Target
a060126a519189df19073ba2751c30b0_NeikiAnalytics
-
Size
8KB
-
MD5
a060126a519189df19073ba2751c30b0
-
SHA1
452a444139e68c0ca75b0c74a9653958fc60c16c
-
SHA256
9dbac8c6884d26cb6acf7e05441749bcee9451db5ff2e804c0369d5bed476ad8
-
SHA512
cd44e895a54098645e388f74642531f16b16903172c3ede240adb8e898ed9e7a7a9fda760c83841866b7439a845802fdca6d2246a453ff1fdfc02816087778bd
-
SSDEEP
192:gq94thTHoC7Yqe8r1djeBrcWZzWZ+CWeV:gj375e855evWsCWeV
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a060126a519189df19073ba2751c30b0_NeikiAnalytics
Files
-
a060126a519189df19073ba2751c30b0_NeikiAnalytics.sys windows:5 windows x86 arch:x86
37c3459ca268ca84b1dc0d18cbc8cb0a
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ntoskrnl.exe
ord22904
ord22918
ord22944
ord22968
ord22988
ord23012
ord23030
ord23040
ord23064
ord23088
ord23116
ord23160
ord23186
ord23206
ord23218
ord23236
ord23260
ord23284
ord23300
ord23316
ord23350
ord22878
ord23140
ord22856
hal
ord23396
ord23416
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 256B - Virtual size: 175B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128B - Virtual size: 128B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PAGE Size: 512B - Virtual size: 402B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
INIT Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 1016B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.reloc Size: 640B - Virtual size: 564B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ