7d57a6f48fc8ffffadbfead7e0d25650_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7d57a6f48fc8ffffadbfead7e0d25650_NeikiAnalytics.exe
Size

3KB
MD5

7d57a6f48fc8ffffadbfead7e0d25650
SHA1

38a4e143ee4419bacf9b770d6417571cdf1f94c9
SHA256

77509b5e2f7b81ad75cf713e4c9ed4c7fbb8cab6cc434ca6349080e06ea473d1
SHA512

349a1ef4cfdbeb9b2abd5512435662a89f3f2a8cc6f599557cab55cdee8f54ff8457513a0a0e7e97c351777d338618571b16922d27fd90b564b4ec532a02e9b2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d57a6f48fc8ffffadbfead7e0d25650_NeikiAnalytics.exe

Files

7d57a6f48fc8ffffadbfead7e0d25650_NeikiAnalytics.exe
.dll windows:5 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32

Sections

.text
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 319B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ