105474a8eb88dc52df24d3faef40f770_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

105474a8eb88dc52df24d3faef40f770_NeikiAnalytics.exe
Size

933KB
MD5

105474a8eb88dc52df24d3faef40f770
SHA1

54ece20bd43b3e87b5eda79fb64e33be9d8b78ec
SHA256

aaf4b9e8bb1a26a37dd60b9a8e97a9481dd7a9753b13a51f6dd5354774d13391
SHA512

433c3f13689b77e644a57a58a9f7b062f81cdcff75fbc3da5dd798020efcc7055579ce5a33332bd04af96a57f5c079e573df3556c40512b3d42c1a794bbdec34
SSDEEP

3072:R90az+bwdfchHM4K+az+bwdfchHM4tXg8hUQFoiP8j29m7l:RHz+biF4Kz+biF4dEiw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
105474a8eb88dc52df24d3faef40f770_NeikiAnalytics.exe

Files

105474a8eb88dc52df24d3faef40f770_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

i:\Workspaces\VA20A\Installers\WS\WS Auto Update\Update Manager\WSUpdateManager\obj\Release\WSUpdateManager.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 930KB - Virtual size: 929KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ