58f5b14cd35ed23f179ea30c1e955320_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58f5b14cd35ed23f179ea30c1e955320_NeikiAnalytics.exe
Size

9KB
MD5

58f5b14cd35ed23f179ea30c1e955320
SHA1

b26a1be08c757b33ca3019ad13db2cf1ce89c6e0
SHA256

2b00f1706ca6f73928f221bcd0753c2c8854796974e100f193e5a672b5b333e8
SHA512

52af6b7cf33ea00092483aca60e2e54bf96b71b6294ebdb31a1efb672cfdee00d6c3be4dddf20134fd51e7040bb1cdc1cfc4fae0fd78865e0f4acc7c9a642e62
SSDEEP

96:D9/BXLQfNZFa46F8vxVaCKBh1jBhCLKn7yInfclN/ySBk/jfA32vD:tBXR4+8C9BfjyEclN/ySBO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58f5b14cd35ed23f179ea30c1e955320_NeikiAnalytics.exe

Files

58f5b14cd35ed23f179ea30c1e955320_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

cef247f8e9d3903847e73aa492fa9471

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

carclw62

CARC__EnterInstance
CARC__ExitInstance
GOL$FILLDATA
CARC__StopRun
GOL$COPYDATA
CARC__GetDynamicCallAddress
GOL$COPYFILL
CARC__CancelDynamicInstance
_CARC__LibraryMain@12

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RCLID_TE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 342B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RCLEP_DA
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 270B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ