1f8270f6f1c66152ffdccaa293ab1d8a8c4044631fc2f89f58b595ed72d65393_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f8270f6f1c66152ffdccaa293ab1d8a8c4044631fc2f89f58b595ed72d65393_NeikiAnalytics.exe
Size

7KB
MD5

3f33bb92927a049a383cacd908baca30
SHA1

4903e895ca2dde910bf0305ca8a34634a49556c4
SHA256

1f8270f6f1c66152ffdccaa293ab1d8a8c4044631fc2f89f58b595ed72d65393
SHA512

6d685884ef9d608fddb0d6f37466c5598fdbcecd22c72f6a7efc4e60d71d65311e48f6614e82c54a41992e061dcd561e07003469386cef957bd2204102fc798d
SSDEEP

96:xosuiLxdlO7i7odRlRTiP0WQB+cwjiEhZe7dcPoDxcK1Xo:Yidm73VWQBYhAWgDxLR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f8270f6f1c66152ffdccaa293ab1d8a8c4044631fc2f89f58b595ed72d65393_NeikiAnalytics.exe

Files

1f8270f6f1c66152ffdccaa293ab1d8a8c4044631fc2f89f58b595ed72d65393_NeikiAnalytics.exe
.dll windows:5 windows x86 arch:x86

7962766f14af295ea850c090ed6b41a4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WaitForSingleObject
GetTickCount
Sleep
CloseHandle
CreateThread
lstrlenA
DisableThreadLibraryCalls
GetModuleHandleA
CompareStringA
GetLastError
RaiseException
InterlockedExchange
LoadLibraryA
LocalAlloc
GetProcAddress
FreeLibrary

user32

MessageBoxIndirectA
SendMessageA
wsprintfA

msvcr90

memset

Exports

Exports

winampGetInModule2

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 498B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ