2c123e1b312a927568a0bb7c83d78060_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c123e1b312a927568a0bb7c83d78060_NeikiAnalytics.exe
Size

2.1MB
MD5

2c123e1b312a927568a0bb7c83d78060
SHA1

c7fbbbb4a502371f1fa5fd4fb58c5cdcb1e868eb
SHA256

b0a34fe3dcacccdc852f41b7ef611d70b0fb9356610edc4d2730b0e349454a83
SHA512

b6b231bdb966af30fe02fdbc408571f2262f5b10a760c6f59789963d8acb39f5ea414e198b751b11adbdbc63f3d92740eab79a76c7b57004f3bacb9dc894ea91
SSDEEP

24576:OCTl0YdWFzbl7jjmnXbKFQ0czGUeNbE2ypQQsDA9EAST6HDFFLp:O4GY0zeW/udf3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c123e1b312a927568a0bb7c83d78060_NeikiAnalytics.exe

Files

2c123e1b312a927568a0bb7c83d78060_NeikiAnalytics.exe
.exe windows:4 windows

8e907cfa090dd33bd513000ed5e14899

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
VirtualAlloc

user32

GetProcessWindowStation
GetCapture

Sections

.text
Size: 716KB - Virtual size: 716KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE