39d5548ce0964090f73baec18189bf40_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

39d5548ce0964090f73baec18189bf40_NeikiAnalytics.exe
Size

12KB
MD5

39d5548ce0964090f73baec18189bf40
SHA1

f480196ffbef0c314c18ba3707a310cba3a43398
SHA256

056de34946d00f03d2c89096c553b216ffc1877a72633f3505a107c6d9cf23a3
SHA512

701476287e84a5ed72ad8d3c9276e71b44cb4ee8a6ebc1607d00bb55c7fefb6b1fd0e852d3e7b9645ef2978805ddc365ffcd747705113c35be2cd8deaeef03e1
SSDEEP

384:+L7li/2zpq2DcEQvdhcJKLTp/NK9xaOn:opM/Q9cOn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
39d5548ce0964090f73baec18189bf40_NeikiAnalytics.exe

Files

39d5548ce0964090f73baec18189bf40_NeikiAnalytics.exe
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ