32eebe2b9b252cf11ecb6656d1ed74c0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

32eebe2b9b252cf11ecb6656d1ed74c0_NeikiAnalytics.exe
Size

45KB
MD5

32eebe2b9b252cf11ecb6656d1ed74c0
SHA1

8a6ae89f048c39bf35d9e6aa21464c9e34d2462a
SHA256

be540dc5f007cb716159d2f0125ae6a834f574cf61cf89b4a3555f85ce6286bf
SHA512

b562bdbc018d6656339da55063b93671d158b091981b027956dc2629463f664372366daaddc8255ddb1fb2a4f76631a006b0f11fbac76817e84a2cb591633af3
SSDEEP

192:z7i4eTAFqi/RcRiTLtdzV+7QZUkhfq4Y7YDuwc1OqqqC3bej+du5q+gJ:zTeTVim4XtdJ+6kH7YDuwrqqqQ6jz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32eebe2b9b252cf11ecb6656d1ed74c0_NeikiAnalytics.exe

Files

32eebe2b9b252cf11ecb6656d1ed74c0_NeikiAnalytics.exe
.exe windows:6 windows x64 arch:x64

92a2e609858da421f630041bae4ad4ec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\assemblage\Builds\5453376469062237843rircjrgfis\Codeing-Interview-master\24_ReverseList\assemblage_outdir_bin\24_ReverseList.pdb

Imports

utilities

?PrintList@@YAXPEAUListNode@@@Z
?ConnectListNodes@@YAXPEAUListNode@@0@Z
?DestroyList@@YAXPEAUListNode@@@Z
?CreateListNode@@YAPEAUListNode@@H@Z

vcruntime140d

__C_specific_handler
__std_type_info_destroy_list

ucrtbased

_register_thread_local_exe_atexit_callback
_configthreadlocale
__p___argc
__p__commode
_seh_filter_dll
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
terminate
_c_exit
_exit
exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
__setusermatherr
_set_app_type
_seh_filter_exe
__stdio_common_vfprintf
__acrt_iob_func
_cexit
_set_fmode
__p___argv
_set_new_mode

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
TerminateProcess
GetCurrentProcess
GetModuleHandleW
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
QueryPerformanceCounter

Sections

.textbss
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 283B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 299B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92a2e609858da421f630041bae4ad4ec

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

utilities

vcruntime140d

ucrtbased

kernel32

Sections

.textbss Size: - Virtual size: 64KB

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 2KB

.pdata Size: 8KB - Virtual size: 7KB

.idata Size: 3KB - Virtual size: 3KB

.gfids Size: 512B - Virtual size: 300B

.00cfg Size: 512B - Virtual size: 283B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 299B

.textbss
Size: - Virtual size: 64KB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 2KB

.pdata
Size: 8KB - Virtual size: 7KB

.idata
Size: 3KB - Virtual size: 3KB

.gfids
Size: 512B - Virtual size: 300B

.00cfg
Size: 512B - Virtual size: 283B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 299B