dc545d95c45aee22218bea8e8aaec610_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc545d95c45aee22218bea8e8aaec610_NeikiAnalytics
Size

6KB
MD5

dc545d95c45aee22218bea8e8aaec610
SHA1

9c642514645accdf8ddf1a2bdb98ddb89d65b011
SHA256

a58edfc98bbd1c66f432ae721ca1835ebd155b2669a8324f11cba759e749117d
SHA512

c220b5c8d3284c580d660cbe574a7361bc7d8d7b688628dd6622e782d1e4afaf73128637ece05147b7e657cddea2e00240cbdce2585fdf637ec2bcd16eec27b0
SSDEEP

48:62wr8f5l2CIH2zfEwqbarQdtwIVUHG3+PycRiEEFve+QNGMQuJCoeHbhSjM1JzKj:noWzCPpukHbhSg1JzK1FnPpGHdnF0PS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc545d95c45aee22218bea8e8aaec610_NeikiAnalytics

Files

dc545d95c45aee22218bea8e8aaec610_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Windows\Microsoft.NET\Framework64\v4.0.30319\Temporary ASP.NET Files\root\33e8ae13\a5e5c008\App_Web_wgtfeiyy.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ