Behavioral task
behavioral1
Sample
d7fff3ea536ff6aa27799c503169d7c0_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d7fff3ea536ff6aa27799c503169d7c0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
d7fff3ea536ff6aa27799c503169d7c0_NeikiAnalytics.exe
-
Size
179KB
-
MD5
d7fff3ea536ff6aa27799c503169d7c0
-
SHA1
3d1f4c8f6aabafc7f09c33584ee34f2dd2e11bd4
-
SHA256
f8a6408e80b178377c3839d404cc1a06fb2d79fc5f787d5e6504aa2742314806
-
SHA512
4ed471a0a9f1a481a4dca17d2581df3d600b3a3a51412a6182368440d6365454571b48a34f1075d916abf84409932bb05959ec4afeece767ab4e90bca3a454c2
-
SSDEEP
3072:+g8TA46N4WdDkctkA4wlFttOpYi61GnaMzurP:+g8euKkIw+FWYGaD
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d7fff3ea536ff6aa27799c503169d7c0_NeikiAnalytics.exe
Files
-
d7fff3ea536ff6aa27799c503169d7c0_NeikiAnalytics.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 144KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
UPX1 Size: 176KB - Virtual size: 176KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE