8cf8ceab3ad36e66f3d3ff8c925c4940_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cf8ceab3ad36e66f3d3ff8c925c4940_NeikiAnalytics.exe
Size

583KB
MD5

8cf8ceab3ad36e66f3d3ff8c925c4940
SHA1

886b590c145a5a8a587821b4beeff6dbf0694472
SHA256

e0f9740bd20a5747ec765ea491987a824d3f36a1ee474960483f54d8a3d9cdd5
SHA512

20a3d751f1604a779779cab98a383ce298dd17a87ed53e8f557fe26458c6f49e5bdc5088732784555a82ac04e6fc9ccafc637223e586a2c70d434b61231f1a09
SSDEEP

12288:gIJjg3+pFvKjetGJzwz8D9s3dMfOjxMrSI7ZZl4Suh:/0WsjeaEo0uWFsSqz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cf8ceab3ad36e66f3d3ff8c925c4940_NeikiAnalytics.exe

Files

8cf8ceab3ad36e66f3d3ff8c925c4940_NeikiAnalytics.exe
.exe windows:6 windows x86 arch:x86

d3412f7941fa57ef7160598a88f630cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
GetStdHandle
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
DeleteObject
GetDIBits
GetDeviceCaps
GetObjectW
SelectObject

user32

GetDC
ReleaseDC

Sections

.text
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ