5b974ede15e3b94091e79f7a36d616871df1c40529e9d5ace3a252142804f46a_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b974ede15e3b94091e79f7a36d616871df1c40529e9d5ace3a252142804f46a_NeikiAnalytics.exe
Size

4.8MB
MD5

2bb613da6e4b3b213681e7f6a0e9ed50
SHA1

c62b5134423c36c879bb84d065e27311596c6c7f
SHA256

5b974ede15e3b94091e79f7a36d616871df1c40529e9d5ace3a252142804f46a
SHA512

d81fff3c314334274f4a319e4540ef04b456bbe0a72036d81f85fd12b7936502f2edc15314ff4fc5f2724e61ee1c2a03e47f738f80db07943d8eb0589b149441
SSDEEP

98304:S9qQ9OME4TBbH78foiKjBoNcjudjglAQ3m7DfGtSye4fkDraZ7FV:HvOMfKjBo7dO2fby/fkv0V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b974ede15e3b94091e79f7a36d616871df1c40529e9d5ace3a252142804f46a_NeikiAnalytics.exe

Files

5b974ede15e3b94091e79f7a36d616871df1c40529e9d5ace3a252142804f46a_NeikiAnalytics.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.@?F
Size: - Virtual size: 16.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.^@{
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kJU
Size: 18.9MB - Virtual size: 18.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ