41170d36ed3ea5bfec5a9bd547ad7340_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41170d36ed3ea5bfec5a9bd547ad7340_NeikiAnalytics.exe
Size

12KB
MD5

41170d36ed3ea5bfec5a9bd547ad7340
SHA1

b4de4b0de0a355bda54d5a959a00bf0acefaea71
SHA256

0930287c2059771a600a3dcd847c94af40d47cd8901e8c4292aaa17ab6fa36df
SHA512

1ebc4e282ba562763ae94fe8fbb93d44bb4ff872c034dce10ad0e18595d89f8c9a02ed43b0276cf9298f0b1cb385dbe666448acf57c59a563b69174e2692bfc6
SSDEEP

384:PL7li/2zHq2DcEQvdhcJKLTp/NK9xa5Q:jbM/Q9c5Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41170d36ed3ea5bfec5a9bd547ad7340_NeikiAnalytics.exe

Files

41170d36ed3ea5bfec5a9bd547ad7340_NeikiAnalytics.exe
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ