Overview

overview

7

Static

static

3

ec59d3f209...cs.exe

windows7-x64

7

ec59d3f209...cs.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    ec59d3f2097b25de9772be4a4e3da9a0_NeikiAnalytics.exe

  • Size

    187KB

  • MD5

    ec59d3f2097b25de9772be4a4e3da9a0

  • SHA1

    15698760df5c8ab80e731c35adc65a60f5c2bd6b

  • SHA256

    ccbcd45fd45602abd15fa743d4aa7609174e3130e2d18d27aaadd06fc75a7cff

  • SHA512

    d507b43c34ad55455e7492d88bd598d0fe5741c039131e415957fef8d6a9c64a9d4b69202d46e5961452330f7f9b5fa1b9f1b8162880bcd7156902dfb741698a

  • SSDEEP

    3072:Wa77v0JhE4Dy6LtauM8sxQxcijtFSxNKQxOSRUUSTiehw2tvhOEA1RJCir86SrSU:Ww4JQ6xc8ci3iOSHVe22t0EyL+ewaq

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • ec59d3f2097b25de9772be4a4e3da9a0_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86

    b34f154ec913d2d2c435cbd644e91687


    Headers

    Imports

    Sections

  • $PLUGINSDIR/StdUtils.dll
    .dll windows:5 windows x86 arch:x86

    7b79709c0d5576549eb261e3410f95f8


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/WinShell.dll
    .dll windows:4 windows x86 arch:x86

    a75c904bad153f5af2c37cfdf66eba5c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    d31c5eb927119d00232e4d4b0e32fcdb


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    439074d1c01f7b16781bdf060930814a


    Headers

    Imports

    Exports

    Sections