2c2ca1d8b863840d93069fe2a02cf310_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

2c2ca1d8b863840d93069fe2a02cf310_NeikiAnalytics.exe
Size

66KB
MD5

2c2ca1d8b863840d93069fe2a02cf310
SHA1

cfd656d7c04ab268add53a54b1709d907b39bb8c
SHA256

45cdcd2f2a941cf11c158b18cfa3fb58f44010621c050c6b0c926fc454ed7d3c
SHA512

b5da27a63deb3b7c786731aee08b8a3e9e994199f85627e697f207bc6b25046ecd666d7128e871fe2773d38934d1832255d2c6d7048fe23a572fd7686fb4dc00
SSDEEP

1536:VA+bQUVfvv7rrkY7XQ8ExhcB0cQQnWD34z:VTJvv4kEqS3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c2ca1d8b863840d93069fe2a02cf310_NeikiAnalytics.exe

Files

2c2ca1d8b863840d93069fe2a02cf310_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

59a32d7c2e4e349c0e79b5f2296eb5ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
GetLocaleInfoA
CreateHardLinkTransactedW
Heap32ListNext
RemoveSecureMemoryCacheCallback
Thread32First
EnumResourceLanguagesA
InterlockedExchange
BaseSetLastNTError
NlsUpdateLocale

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE