Behavioral task
behavioral1
Sample
1d0953d05efec3e53c3fb8ffbd3a8cd0_NeikiAnalytics.exe
Resource
win7-20240221-en
General
-
Target
1d0953d05efec3e53c3fb8ffbd3a8cd0_NeikiAnalytics.exe
-
Size
81KB
-
MD5
1d0953d05efec3e53c3fb8ffbd3a8cd0
-
SHA1
5dcaed28bf86dbe8a84341e4409e4b1e921a1168
-
SHA256
314b32a30e4c2f5619c10e323343c6cd1d30042a7a5480f7c74e3cbf5f49c221
-
SHA512
b63c8537f82245e71aae1612043b7832e966d0412600c17509782ece9cc32754ed1f0088d3666d7a936f41896b34a9cd5b0c14c4a8186070465a63d90d7e00a9
-
SSDEEP
1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7QV:zhOmTsF93UYfwC6GIoutiTU2HVS63QV
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1d0953d05efec3e53c3fb8ffbd3a8cd0_NeikiAnalytics.exe
Files
-
1d0953d05efec3e53c3fb8ffbd3a8cd0_NeikiAnalytics.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 104KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 40KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE