3995c9aef3aa9f68177a70dcf383a05a9c6f908fe94ad30aafcc0082975dba2f_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

3995c9aef3aa9f68177a70dcf383a05a9c6f908fe94ad30aafcc0082975dba2f_NeikiAnalytics
Size

21KB
MD5

8d4f06f3f3b860e76cabfd961fac6840
SHA1

a9fa0281a07974b8d235ee389bd545c2e400c99c
SHA256

3995c9aef3aa9f68177a70dcf383a05a9c6f908fe94ad30aafcc0082975dba2f
SHA512

d9d29ed7fa4d661dd7ee316fc5bb22d8233501fab7d2e9c3d59fe7059c3afc907406538efc6e2214ca67fd89b100ac18e545198d3ae3cdd7acc15ce8fa46b992
SSDEEP

384:Y81CRMqcx5DPP3+fBTbBYeCla5jn+SsOyQ16ZQVVyg/UNX7Y/m:Y81Bj5DPPGTw81+SfyRZIoYUB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3995c9aef3aa9f68177a70dcf383a05a9c6f908fe94ad30aafcc0082975dba2f_NeikiAnalytics

Files

3995c9aef3aa9f68177a70dcf383a05a9c6f908fe94ad30aafcc0082975dba2f_NeikiAnalytics
.exe windows:1 windows x86 arch:x86

f93e6289881266baa01a8226c74077ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

salflibc

__SALFORD_MAP
__throw_temporary_ptr
__undefined_function
CLOS##
I4#WSF
EXIT1#
WSF2#
CH#RSF
STOP#
WSF1##
__FTN95INIT1_
RDF1##
CH#WSF
FEXISTS#
OPEN##
ERASE#
DOSERR#
I4#RSF
__CCOPY
RSF1##
GET_CURSOR_POS#
SET_CURSOR_POS#
mprintf0
__init_WindowsType
strerror
__initialise_cpplib
LibMain
GetVersion
GetModuleHandleA
__errno_address
strcat
__stdin_address
__salf_exception_handler
__stdout_address
WinMain
exit
__stderr_address
__ctype_ptr_address
__cout_address
__cin_address
__vd_info_address
__get_virtual_common_block
__cerr_address
__WindowsType_address
__clearwin
__Put_exception_title
__init_cpplib_info
LIBMAIN#
GetLastError
__get_main_arguments
____console_stdin_address
GetWindow
sprintf
__Put_exception_message
____console_stdout_address
strlwr
____console_stderr_address
__special_flags_address
__General_shared_address
__Register_map_info
_scc_lib_version
GetModuleFileNameA
__initialise_sccdll

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.comment
Size: 512B - Virtual size: 186B

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.salfmap
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.salfsys
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.salfvc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f93e6289881266baa01a8226c74077ae

Headers

File Characteristics

Imports

salflibc

Sections

.text Size: 9KB - Virtual size: 8KB

.bss Size: - Virtual size: 2KB

.comment Size: 512B - Virtual size: 186B

.data Size: 3KB - Virtual size: 3KB

.idata Size: 2KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 12B

.salfmap Size: 2KB - Virtual size: 1KB

.salfsys Size: 512B - Virtual size: 24B

.salfvc Size: 512B - Virtual size: 44B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 8KB

.bss
Size: - Virtual size: 2KB

.comment
Size: 512B - Virtual size: 186B

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 2KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 12B

.salfmap
Size: 2KB - Virtual size: 1KB

.salfsys
Size: 512B - Virtual size: 24B

.salfvc
Size: 512B - Virtual size: 44B

.reloc
Size: 1KB - Virtual size: 1KB