Behavioral task
behavioral1
Sample
45200f8be04f42a05c8b87d332c811c0_NeikiAnalytics.exe
Resource
win7-20240221-en
General
-
Target
45200f8be04f42a05c8b87d332c811c0_NeikiAnalytics.exe
-
Size
448KB
-
MD5
45200f8be04f42a05c8b87d332c811c0
-
SHA1
245fa82e0fecb7377345258e6b7df3490ec6ce25
-
SHA256
3d1d33fc58edbb6606e01ae95b794342509ab05d9c464e602d75ef6a6596816e
-
SHA512
0fbb6286e5932a1e676dfd6a726a88a47d04e22ac048f1fd347a3480d19f0a4b3c52f0f00027674d3943f80aee820ccc0e3bf3b3304b3edfa51086619549d6e0
-
SSDEEP
768:CpQNwC3BESe4Vqth+0V5vKPyLylze70wi3BEmP:CeT7BVwxfvLFwjRP
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 45200f8be04f42a05c8b87d332c811c0_NeikiAnalytics.exe
Files
-
45200f8be04f42a05c8b87d332c811c0_NeikiAnalytics.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: 64KB - Virtual size: 64KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 24KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pb Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE