0fcd09d7c72d2b1a2ae24beb78debd70_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

0fcd09d7c72d2b1a2ae24beb78debd70_NeikiAnalytics.exe
Size

1.1MB
MD5

0fcd09d7c72d2b1a2ae24beb78debd70
SHA1

f9d164bdd59084310fe458e62ff0ce09052e9e67
SHA256

c2236ef66a1634a31a8f118eec825a1bf4eaff19a8940df758f0be599aadcb35
SHA512

5738480f31acec5bc0fc034695b92b7cf68fdda4809e570c4c2e7be9fd33ef310271af4dcb0c3887de56fd1ba8dd2ebe41ee57967a519c57a9bb247e6dd0c0c1
SSDEEP

24576:QGEbo8MBvGMg4MS8Z1O4N8FwdPc4U9+vhc49rL9:QGKMBvGY812KU4Le4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fcd09d7c72d2b1a2ae24beb78debd70_NeikiAnalytics.exe

Files

0fcd09d7c72d2b1a2ae24beb78debd70_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\git\svn_build2310\ProductProjects\HAYABUSA_DH\Epson.Accounting.Kyuyo\obj\x86\Release\Kyuyo.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 981KB - Virtual size: 980KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ