77bd03ae43974a550cf215925fa04b90_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77bd03ae43974a550cf215925fa04b90_NeikiAnalytics.exe
Size

200KB
MD5

77bd03ae43974a550cf215925fa04b90
SHA1

f5cc49cc727bb7951d390a2931806b93a509e667
SHA256

7916fda66df41d2feb2fc12c7ce91f5fb79b95a120e6f82449c0f99d68977961
SHA512

ca39447e4ce1e2d8e34b47ae7c8f9733a592c66e505e2578395d944cab1a0936361a60fdf7e515150932959dae007a4b03617f6721845f27dd4013d552bfad8f
SSDEEP

3072:66zevTpcofDn7SQdxG7l2PJ5XSJMT+qsyGQUeiXUyWmrjJrItmAZsF1i9LC8Yq:66I7SplO0F1QF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77bd03ae43974a550cf215925fa04b90_NeikiAnalytics.exe

Files

77bd03ae43974a550cf215925fa04b90_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\06da6aeb\95140f79\App_Web_h_j0iywy.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ