F:\Office\Target\x86\ship\postc2r\x-none\wordconv.pdb
Static task
static1
Behavioral task
behavioral1
Sample
9f6efcdafae47203caa710423fe4ab00_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
9f6efcdafae47203caa710423fe4ab00_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
9f6efcdafae47203caa710423fe4ab00_NeikiAnalytics.exe
-
Size
1.5MB
-
MD5
9f6efcdafae47203caa710423fe4ab00
-
SHA1
c80375755bbf72181d5399f194e4eda18f7d3635
-
SHA256
55d38ac46d61efad9cc8abe4f41f29b4a6da59d58c67563f4b8e940dc9541958
-
SHA512
505be51f73f499125a028f1b3b06f31913fadd9238ee16f7641ccdd2b6d95ef7035c77b64f0b55bfbe1b952d02a23f10b00f01ab3139558837cf187dbe366cbc
-
SSDEEP
24576:bx/WnSyhbzvZOqU1324ss86TYNw/rgkCIabjKoh9WDF:1WSytLoqUk4ss1TTxCIabjKoh9WZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9f6efcdafae47203caa710423fe4ab00_NeikiAnalytics.exe
Files
-
9f6efcdafae47203caa710423fe4ab00_NeikiAnalytics.exe.exe windows:6 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Sections
.text Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.c2r Size: 512B - Virtual size: 260B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ