1898607b0e92a054151dd9ea8933f67d5b9375dfcd9289a26333bbb4c080c892_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1898607b0e92a054151dd9ea8933f67d5b9375dfcd9289a26333bbb4c080c892_NeikiAnalytics.exe
Size

3KB
MD5

e2ef6cb98b7792f53cf133c3ca1ce300
SHA1

6fb9e98e0d8230805243f09b521278ed0b1529f3
SHA256

1898607b0e92a054151dd9ea8933f67d5b9375dfcd9289a26333bbb4c080c892
SHA512

30722c2d66d9296a01df7c9eed6786c6e85b239f92d422b500c5f3bfd18269b233eb25f368161ef2e2856fec856df1e777a921ad4d9970ac913a55d97db97a49

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1898607b0e92a054151dd9ea8933f67d5b9375dfcd9289a26333bbb4c080c892_NeikiAnalytics.exe

Files

1898607b0e92a054151dd9ea8933f67d5b9375dfcd9289a26333bbb4c080c892_NeikiAnalytics.exe
.dll windows:5 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32

Sections

.text
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 319B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ