Static task
static1
Behavioral task
behavioral1
Sample
a7b2df41f56f1e1862a40c2f995b23b0_NeikiAnalytics.dll
Resource
win7-20240221-en
General
-
Target
a7b2df41f56f1e1862a40c2f995b23b0_NeikiAnalytics.exe
-
Size
120KB
-
MD5
a7b2df41f56f1e1862a40c2f995b23b0
-
SHA1
bc691751b27754c80b4663b0d8fa4fc1bf073c17
-
SHA256
f4828eee64fe3ca22473db49a49e4ce69848cb07e8f439ffac2eb38290ea3754
-
SHA512
86d0e5136695bff4777025f923bcabaae316e06084183fa859a8929bc750279f2e55bc17772d67100a83a2aa579d50e6790e86c6ea413bd9c3240b4fbf99e29f
-
SSDEEP
1536:AHGuKM2xLdnkNVq8llMQ5gCC8CGugXWRJbIuUwM+U3kZMBGZxNEbSHkRDx:n2l6CBvdeUupUBeUbSHU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource a7b2df41f56f1e1862a40c2f995b23b0_NeikiAnalytics.exe
Files
-
a7b2df41f56f1e1862a40c2f995b23b0_NeikiAnalytics.exe.dll windows:4 windows x86 arch:x86
0f44bf2b3b0b8d5ecae5689ff1d0e90d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode
user32
wsprintfA
Sections
.text Size: 119KB - Virtual size: 118KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 376B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ