341c92b8b3ebf9509310c9f3fc639460_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

341c92b8b3ebf9509310c9f3fc639460_NeikiAnalytics.exe
Size

7KB
MD5

341c92b8b3ebf9509310c9f3fc639460
SHA1

cf493e18178f2ba92db1dfec018ae0317c3a979e
SHA256

7d1f30835a256874267e6085f510139185a6a006ed1cec42ff8227fd16fac068
SHA512

18b82b4a51a5d85d1c15fed8b1a2be8a03ed7e2263193eecf8d675b0647982061e4e624a00970eba3a195cc8fb81c27c1c5a4764b6038883b3c19bd7dec8028b
SSDEEP

96:z0dpglt6eGE0wI3RzUeEPCrUKERKU4Xru2VHNY/ZiCFktr+:/x09R4KfUh2PYhidc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
341c92b8b3ebf9509310c9f3fc639460_NeikiAnalytics.exe

Files

341c92b8b3ebf9509310c9f3fc639460_NeikiAnalytics.exe
.dll windows:5 windows x86 arch:x86

01c41bde2e28b577655077042a01522f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 349B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ