1ee2c939c202f640a2f8d84c2e20e250_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

1ee2c939c202f640a2f8d84c2e20e250_NeikiAnalytics.exe
Size

170KB
MD5

1ee2c939c202f640a2f8d84c2e20e250
SHA1

f895fcb4bd6fde2a6b62d64907aa7a8809038c85
SHA256

986d2f7d88e045a9f591305b3f7d5d0eabb31fc4e575c6a080128b55254c684f
SHA512

2f08d4eed5c0eccad855249cda84fdc2cac8ec3ba0c0af4eb31a37e7ed5443860ac861717b0ec7b22271ed57bb710be4897816831a2f15c07601daa721107fdd
SSDEEP

1536:Rf43kH2s0PwjltX2nqzmKVnIYFijUfbQm5fcTR:h4clveqz/DiMbhfA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ee2c939c202f640a2f8d84c2e20e250_NeikiAnalytics.exe

Files

1ee2c939c202f640a2f8d84c2e20e250_NeikiAnalytics.exe
.exe windows:6 windows x64 arch:x64

6dc6b3e5c10bbb7706ba158b2f5a14af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetLastError

user32

MessageBoxW

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ