019b3f393c34d28e8905a43c5acf8e70_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

019b3f393c34d28e8905a43c5acf8e70_NeikiAnalytics.exe
Size

6KB
MD5

019b3f393c34d28e8905a43c5acf8e70
SHA1

1fe61077ad6f01d50600d1908739dcc6483a7cdc
SHA256

3f39710df389e6ebd1222c1c5b47472f3bd4f3e561b81e855f33adb5ce946fed
SHA512

d954f8e3e8d8cec4c1a53f7fa7891c0726a0eb06f056b6a9d391523cc5c7631c7950831d9d353b93d1e19af163c69a884b4c6d6e61284deaafa57a4a3830f966
SSDEEP

96:hy859x0P8Ma7kxrT/vy69lyOuCcmSu4Y0jZ8CSsCT9DsTts:F5oLk0r+69ly+2u4Y0t8CTChDYts

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
019b3f393c34d28e8905a43c5acf8e70_NeikiAnalytics.exe

Files

019b3f393c34d28e8905a43c5acf8e70_NeikiAnalytics.exe
.dll windows:5 windows x86 arch:x86

c4c9ecfc26ca516a80b8f6f5b2bdb7e6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryW
GetProcAddress
CreateFileA

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 385B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ