633449cfe2b1d2ffc9af1b5dadaaf310_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

633449cfe2b1d2ffc9af1b5dadaaf310_NeikiAnalytics.exe
Size

48KB
MD5

633449cfe2b1d2ffc9af1b5dadaaf310
SHA1

10a08fff4369258e05cf9ad96da7a60181fe4fc2
SHA256

d26da5d824f993aba49294e220c3bc4db6555299ba173cce8b1b5c2fdc384963
SHA512

95f98cefb66bf1e0f5a8f7859c2bf5fab011549d86b75b363a12e1904b1c1f97a4058f739e2b6a93a067242eab054a9ca74d0d8f46255e2f7d2400de8e0ae38c
SSDEEP

768:dD2oV2AJblQRNLzFrSNTVebqxjxMQhMk6Cr3H3g:dCoVXGRTuhBxj/hH3Hw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
633449cfe2b1d2ffc9af1b5dadaaf310_NeikiAnalytics.exe

Files

633449cfe2b1d2ffc9af1b5dadaaf310_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

3e262236e65f95b01f5c11555a1db856

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
DefWindowProcW
UpdateWindow
LoadCursorW
DispatchMessageW
TranslateMessage
GetMessageW
CreateWindowExW
RegisterClassExW
ShowWindow
PostMessageA

kernel32

FindClose
DeleteFileW
CreateFileW
SetFilePointer
ReadFile
GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ