Behavioral task
behavioral1
Sample
075e7662a2f93f33ca1043a83830c310_NeikiAnalytics.exe
Resource
win7-20240220-en
General
-
Target
075e7662a2f93f33ca1043a83830c310_NeikiAnalytics.exe
-
Size
378KB
-
MD5
075e7662a2f93f33ca1043a83830c310
-
SHA1
0f5ef2a1fc117035bb41d7fd0f39a8c0035b3b9a
-
SHA256
b0e7f24397cdb86f729a7fdf12fa881afb3172deddc23921a2363ae9e334c55d
-
SHA512
253b11489e66fe7837441d6794f9f15fb150184c0a27b9bfb46e17ec45d6b1c2e098be3fc1e40d45f87762dd8fb5ef8b70d34ab9ed2ee32b3345222b434255c1
-
SSDEEP
6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCyH:/4wFHoS4WEkMTHoSbG++tw+tYYyH
Malware Config
Signatures
-
Processes:
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 075e7662a2f93f33ca1043a83830c310_NeikiAnalytics.exe
Files
-
075e7662a2f93f33ca1043a83830c310_NeikiAnalytics.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 104KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 40KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.code Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE