607af4c9bc4c35f92c672a87c9cf3e7021379ca45a8b4bebbceb4f3229c58606_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

607af4c9bc4c35f92c672a87c9cf3e7021379ca45a8b4bebbceb4f3229c58606_NeikiAnalytics.exe
Size

79KB
MD5

c4287194f1b675a428962153f0ad5f70
SHA1

d6a999d926665ff3b70540c4681e2012f885a437
SHA256

607af4c9bc4c35f92c672a87c9cf3e7021379ca45a8b4bebbceb4f3229c58606
SHA512

2fd31873ebd3eb2d11cd5a0d9125f43f37c5b037d730a8e4c5a6041d04e5c62524e5abab658bfa9bf8eafcb63fc13f28197425db62e397b3d71292b27d7825f3
SSDEEP

1536:myS3m37ghxV9wOJgVniqaoN9GAvC2eiEF1D9bBg0EDHPBoxS:mA372wOJuio/qDiyDZBzMPuxS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
607af4c9bc4c35f92c672a87c9cf3e7021379ca45a8b4bebbceb4f3229c58606_NeikiAnalytics.exe

Files

607af4c9bc4c35f92c672a87c9cf3e7021379ca45a8b4bebbceb4f3229c58606_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

364a5ba6412dd4019889fa6a2a8194e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

shlwapi

StrDupW

user32

GetDC

gdi32

SetBkMode

shell32

ShellExecuteExW

ole32

CoTaskMemFree

Sections

.MPRESS1
Size: 70KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE