1a7d40186e3175166f5ce882fd67fb40_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

1a7d40186e3175166f5ce882fd67fb40_NeikiAnalytics.exe
Size

133KB
MD5

1a7d40186e3175166f5ce882fd67fb40
SHA1

023db8196795794372dd218eeb818bb729a9b731
SHA256

0710863333c484f91123a9227b3b0df7124f5208c6e5871d4775ebd5d4533471
SHA512

fb75458079bb15e109491f73668ba894eaf6eef9991339432f806abe2c5cca432cfe8f41d604805729ad62af9b93a68e6fb84ae8d34dfa51ab8881e456144075
SSDEEP

768:wzzyG7CE42cOlwW8UHptnDfx2ncvbgSpbMsfCD15h2xZywSQBeTS:Iq50pzRPzywtO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a7d40186e3175166f5ce882fd67fb40_NeikiAnalytics.exe

Files

1a7d40186e3175166f5ce882fd67fb40_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\steven.chen\Desktop\Smart Update\0519\win8\Update_Service\Update_Service\obj\Release\Update_Service.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ