157bfc397ba350534a98096c09948ed0_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

157bfc397ba350534a98096c09948ed0_NeikiAnalytics.exe
Size

156KB
MD5

157bfc397ba350534a98096c09948ed0
SHA1

1bb11ab472b083e710cab7c42badba9e7e0b5062
SHA256

c37cbceeb71332dd7c6d36f9afe3c297f57c7b2fa612a0cabcf49a40ab287b19
SHA512

a901139b2b310015eae1ac37e81bf09d08fa8d451912ecab2d10f3a29c8a3989a58ee50565b62fd4a654b5cf28d6f7bce5a3ea83f31c6e358969719ae4d27a80
SSDEEP

3072:S1ppM48Xb/yAO0t77jMMyn8Od2AgkAzbYwbNId+XT3evzd/+zyp:E/b4HnMBn86gF3YkN+Kzy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
157bfc397ba350534a98096c09948ed0_NeikiAnalytics.exe

Files

157bfc397ba350534a98096c09948ed0_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

M:\VBDotNetPrograms\TimeKeeper\TimeKeeper\obj\Release\TimeKeeper.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 121B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ