0a6f9243900e3a0491f3423b9f3b3b30_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

0a6f9243900e3a0491f3423b9f3b3b30_NeikiAnalytics.exe
Size

529KB
MD5

0a6f9243900e3a0491f3423b9f3b3b30
SHA1

18a40f16a3958894ef5b1cb92e5c218922c3ef64
SHA256

46cb3756f1c28b8bb34aa8b4db299618ec4d1215366dfab77c37870184460a62
SHA512

e86c5b48aaf8848064777a95659390dd4d6cc1f5c8db658e9995024d3be76abd21abea7d2cb082eec479cdf088a078f306fda43b40069c81a8d373f6b5d8c71b
SSDEEP

6144:oOXiGv37ZjowqL7XXUeAkGT+yRMHlWVMXQMh1wT+TE9bFs6ipK14WglYgUa3mJsa:oOXiGvLOxzQ+pHAMXXWaQ9B914WZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a6f9243900e3a0491f3423b9f3b3b30_NeikiAnalytics.exe

Files

0a6f9243900e3a0491f3423b9f3b3b30_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\obj\Epic\Epic.75NMU\ASI.SMART.Foundation\ASI.SMART.Foundation.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 526KB - Virtual size: 525KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ