43694c9f519e1d9bb28f34190f1219b0_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43694c9f519e1d9bb28f34190f1219b0_NeikiAnalytics.exe
Size

200KB
MD5

43694c9f519e1d9bb28f34190f1219b0
SHA1

d50323ff94c4c7f1f3099bc35976cc1e5eb8afe8
SHA256

d261bf3eddc935f45f151a88c8d1dcea6a8e73ae65a262e0366053d42a9dd00e
SHA512

749ae2ac0a756515c7b78aa453675a7af4b857364d530427d520a356522fb7103b981821590acf2f4c248f36144822f0e1c2a18cda0b799f720ea475548af07b
SSDEEP

3072:R4CF0AnyFfdpg5qv+P4N3+cO1VjX6jD3U6nL0Q8cwFuWFaicLqdgACdTkbj+AH10:YfdiU3w1Zq3EML1FodkBqSACaiAVH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43694c9f519e1d9bb28f34190f1219b0_NeikiAnalytics.exe

Files

43694c9f519e1d9bb28f34190f1219b0_NeikiAnalytics.exe
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

NPGetCaps
NPLogoff
NPLogon

Sections

CODE
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ