af7d4ddc95533adc761d5527e7d130b0_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af7d4ddc95533adc761d5527e7d130b0_NeikiAnalytics.exe
Size

59KB
MD5

af7d4ddc95533adc761d5527e7d130b0
SHA1

ebef705b9bff8d36f3a560bf158f13bfab085819
SHA256

d1ba29aa5315a9819f6c81deb390f9293d2bf810a3c1fc8926ecb8eea5a9cc08
SHA512

463021df3b2c16a75b6a0da9f5b82b8eabd4ae3962d11825c743c778d33625449d5e370d2092a9fa138f7b76749ac62372b667ef77aa5e9eb7f848a5fe8b5b63
SSDEEP

768:61SRDXnZZJudByo4VtvCYr4oQ3sWwUWUIawfQalLbsrw7iF+W:ZRD3ayH/839iaVucX+W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af7d4ddc95533adc761d5527e7d130b0_NeikiAnalytics.exe

Files

af7d4ddc95533adc761d5527e7d130b0_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

fd1d68a169a2a7ae3397a585f25bba38

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cabinet

ord13

mscms

RegisterCMMW

kernel32

GetLastError
ExitProcess
GetModuleHandleW

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 12.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ