Behavioral task
behavioral1
Sample
d1e80454515dd3245a255dd731538540_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
d1e80454515dd3245a255dd731538540_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
d1e80454515dd3245a255dd731538540_NeikiAnalytics
-
Size
676KB
-
MD5
d1e80454515dd3245a255dd731538540
-
SHA1
dbc7de842253fd7351f93a2d548e800e9639c742
-
SHA256
2504200b1c41cb20a4db3b78cf4e8ee2bfd50b97b193b642128f0b127c19a145
-
SHA512
4039ffbe005cf5a66d6916d9b53f3ea2b75b98e02ffc0fd54af4540befe5a81bef9c5f8c295139852051763611c7683465e531ac149e2d783d6633c5bd246569
-
SSDEEP
12288:tEQoS9qhs17Gfu6o2JOkWMUb7lBl1IKeMcYwuOih/BK0/0AJ:t26S2aWbVYu9hp90e
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d1e80454515dd3245a255dd731538540_NeikiAnalytics
Files
-
d1e80454515dd3245a255dd731538540_NeikiAnalytics.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 68KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.btnj Size: 34KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.t Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE