79634377048f43e4fe689710f414b360_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

79634377048f43e4fe689710f414b360_NeikiAnalytics.exe
Size

63KB
MD5

79634377048f43e4fe689710f414b360
SHA1

8d1790a1dc343f26c134e1c7c63b5894fbaf0638
SHA256

112bfac979f211ea61074eaf155d2c442710dd6ff11b6b006cb8bee48165d6f4
SHA512

bb6408c21b6a6bda42401cff873ab4a5159101965f4804934a4288bb990e5b464f2b7190eb582e9109772372ff53829d8745d240ab99d4c999e814cb71e7d0c1
SSDEEP

1536:UukBIlEMYluZn+pHwXEa61XMZCeEn7AxBRAZqVAKzALppjc:UuQxskHwo8soECAKzAde

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
79634377048f43e4fe689710f414b360_NeikiAnalytics.exe

Files

79634377048f43e4fe689710f414b360_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

30268a36757938dc204a9dc51d6b8c1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleMaximumWindowSize
EnumTimeFormatsA
FindNextVolumeMountPointW
TryEnterCriticalSection
ScrollConsoleScreenBufferA
DuplicateConsoleHandle
OpenProcess
GetEnvironmentStringsA
RemoveLocalAlternateComputerNameW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 63KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE