Behavioral task
behavioral1
Sample
4f13d03b0693420630bb0bc6ab8b43b2fcb3764da5d16ba1b44f489da80fb9b8_NeikiAnalytics.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4f13d03b0693420630bb0bc6ab8b43b2fcb3764da5d16ba1b44f489da80fb9b8_NeikiAnalytics.exe
Resource
win10v2004-20240226-en
General
-
Target
4f13d03b0693420630bb0bc6ab8b43b2fcb3764da5d16ba1b44f489da80fb9b8_NeikiAnalytics
-
Size
77KB
-
MD5
bca71372e791c4aa528f8050d378eac0
-
SHA1
dfe10b7af88a11b536034c433de4eec7848bebcc
-
SHA256
4f13d03b0693420630bb0bc6ab8b43b2fcb3764da5d16ba1b44f489da80fb9b8
-
SHA512
2e547470b9abf08d1f18abbbd216a1fa30de13ed0952532cbeae98d3d5c73ea4f7d658f31bd7041177473af12d71ccdaca55f2e374d12dd64625af5c50c44dd8
-
SSDEEP
768:h0vdNL9vUupWcNa8Zz5iQlmxuuoKgPvkHVyXU:h0vdNLtUuFNa8Zz5iQlmxroKgXk1
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4f13d03b0693420630bb0bc6ab8b43b2fcb3764da5d16ba1b44f489da80fb9b8_NeikiAnalytics
Files
-
4f13d03b0693420630bb0bc6ab8b43b2fcb3764da5d16ba1b44f489da80fb9b8_NeikiAnalytics.exe .js windows:4 windows x86 arch:x86 polyglot
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 496KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
UPX1 Size: 75KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.text Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE