e20ccadd12eacdcb16e05531d968d660_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e20ccadd12eacdcb16e05531d968d660_NeikiAnalytics
Size

82KB
MD5

e20ccadd12eacdcb16e05531d968d660
SHA1

0a6e7d3bc9342d1a3556ba777263fbcc6b97cb0b
SHA256

deb71b6c0eebbdd94a613dc4048da2095a6e7496c149440e952ee6b932b3106b
SHA512

f75f8fcc821b804e89c2f1db813b22d0935df52a6756e51bd6bc496459d507b70220c346a42799e9ee62b369be2b78a01357996f3584c7c906f7f887c4c47e85
SSDEEP

1536:t7v2Cg9dA6GU6i0jMrUlWsT+AngnLvv16z3N/EMR2dAPfbPxr/4B0alB:CdjGd4rUlPTTgnLvv16xTPfbPR/4ialB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e20ccadd12eacdcb16e05531d968d660_NeikiAnalytics

Files

e20ccadd12eacdcb16e05531d968d660_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

5d9faeddf8138017b74b859509086c8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord183
MethCallEngine
ord515
ord703
EVENT_SINK_AddRef
ord670
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord644
ord570
ord100
ord613
ord432
ord619

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qvbvtgr
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE