18d35e456147b0e6c691f9c9d938cec87ff789a6e8a21ec80b80df3f87eb0035_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

18d35e456147b0e6c691f9c9d938cec87ff789a6e8a21ec80b80df3f87eb0035_NeikiAnalytics.exe
Size

15KB
MD5

4039b4406452c94a4ce0fc88b9718e80
SHA1

d9cf25107a46dc833e9234c105617993537b2158
SHA256

18d35e456147b0e6c691f9c9d938cec87ff789a6e8a21ec80b80df3f87eb0035
SHA512

ffaa5a98ba118e26f8723cceea47086afa8efb467b9ebb756183d6171c9aba86ed5aa311ccd59c2463d79432afa6c59223db25a87f93dd5f1cdb58ba7656cffb
SSDEEP

192:cgjHMfPFA3jL3VIea3irmwfAF1BDOr+JlC0ZdydEmA1qvQ0ZPS6G:cLJ3iVfAFzDOr+JlC0Zsd4qvQ0Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18d35e456147b0e6c691f9c9d938cec87ff789a6e8a21ec80b80df3f87eb0035_NeikiAnalytics.exe

Files

18d35e456147b0e6c691f9c9d938cec87ff789a6e8a21ec80b80df3f87eb0035_NeikiAnalytics.exe
.dll windows:6 windows x64 arch:x64

aaff0c610b70a8754b810a48d38dd693

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/builds/videolan/vlc/win64/modules/.libs/libcenter_plugin.pdb

Imports

libvlccore

aout_FormatPrepare
vlc_frame_Alloc
vlc_frame_Release

msvcrt

__iob_func
_amsg_exit
_initterm
_lock
_unlock
_write
abort
calloc
free
fwrite
memcpy
realloc
strlen
strncmp
vfprintf

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetLastError
GetModuleHandleW
GetProcAddress
InitializeCriticalSection
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryW
Sleep
TerminateProcess
TlsGetValue
VirtualProtect
VirtualQuery

Exports

Exports

vlc_entry
vlc_entry_api_version
vlc_entry_copyright
vlc_entry_license

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 114B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aaff0c610b70a8754b810a48d38dd693

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libvlccore

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 3KB - Virtual size: 2KB

.buildid Size: 512B - Virtual size: 114B

.data Size: 512B - Virtual size: 256B

.pdata Size: 512B - Virtual size: 300B

.tls Size: 512B - Virtual size: 16B

.rsrc Size: 1024B - Virtual size: 936B

.reloc Size: 512B - Virtual size: 80B

/4 Size: 512B - Virtual size: 32B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 3KB - Virtual size: 2KB

.buildid
Size: 512B - Virtual size: 114B

.data
Size: 512B - Virtual size: 256B

.pdata
Size: 512B - Virtual size: 300B

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 1024B - Virtual size: 936B

.reloc
Size: 512B - Virtual size: 80B

/4
Size: 512B - Virtual size: 32B