7f17e996b77d32661522bf2d163a4cb0_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f17e996b77d32661522bf2d163a4cb0_NeikiAnalytics.exe
Size

17KB
MD5

7f17e996b77d32661522bf2d163a4cb0
SHA1

455c8572ef3ee1a909d7ff33f0f89101897bc415
SHA256

94f453c074edbd44b09674de779d96d5c694a82ba9a3c96dd825a66b5c21c090
SHA512

0ae97bc3b89b43dcb1fcc4f772af81677a9f439d0cf82e737dd02e9e2eb8892c71e0b77d41396460f0331f15a782206dd98d9c9393ea5a1284a12e8879965880
SSDEEP

192:LPFrrKpA/1np31owO2rSNcFceElJt44GuX82nVmF4VjBKc1GOR91+r:LPVgAOJaCeSC+nVLVjBX1H+r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7f17e996b77d32661522bf2d163a4cb0_NeikiAnalytics.exe

Files

7f17e996b77d32661522bf2d163a4cb0_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Subversion\Setup\trunk\Setup\Setup\Setup.Net\Setup.Net.Cnwidif\obj\Release\Setup.Net.Cnwidif.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ