36635273e2393a5a6aa7862b86730800_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36635273e2393a5a6aa7862b86730800_NeikiAnalytics.exe
Size

100KB
MD5

36635273e2393a5a6aa7862b86730800
SHA1

3f19956daef143fdafdfe757f50b5a95ee4e91b1
SHA256

c61eed1fb04334ba82cbe10d229d1bc286faa66373a052a7d75764276db1e6ec
SHA512

7f01c5eb5e01d63deefe1d0066dd40b42dfd4712ac44f8d917dcd33d95e1e6f1dc22cb6d507144fe257419e007cf583db4c0d2876b9f568e5b7bf9a88de83d24
SSDEEP

3072:Az7e7WpMaxeb0CYJ97lEYNR73e+eKZyzR:NqKvb0CYJ973e+eKZG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36635273e2393a5a6aa7862b86730800_NeikiAnalytics.exe

Files

36635273e2393a5a6aa7862b86730800_NeikiAnalytics.exe
.exe windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ