3814ec6c1ac7ab224981f093e4a3d5f0_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

3814ec6c1ac7ab224981f093e4a3d5f0_NeikiAnalytics.exe
Size

2.5MB
MD5

3814ec6c1ac7ab224981f093e4a3d5f0
SHA1

10dd7e9333647f717aaf45461c7e6018c0681ecd
SHA256

8e1013c609a360b32a8f9be5b719bbfccb9e0c939a440ca5b5263e8e252a9b94
SHA512

70078875a7f686372e87f3784a4668501e128409fb8ff411fca5d015e08c74756e90033938d2a17ea3c7897a6e81a6b4c541328229e4c74bf8418c5d8514c9bd
SSDEEP

49152:/RIBV3Tx/WxmcTfUf08nYntPFs8UVAQgC/:/+BxTc8cTfK0Nth

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3814ec6c1ac7ab224981f093e4a3d5f0_NeikiAnalytics.exe

Files

3814ec6c1ac7ab224981f093e4a3d5f0_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\PROJECTS\BMBProjects\NESTLE_LEB\FE\NESTLE_SFA\NESTLE_SFA\obj\Debug\NESTLE_SFA.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 137B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ