8c2d8e9a19b38dedb19120f3ea448a36a8b9f13c452bd635716b1ca73b4b51fc_NeikiAnalytics[.]exe

General

Target

8c2d8e9a19b38dedb19120f3ea448a36a8b9f13c452bd635716b1ca73b4b51fc_NeikiAnalytics.exe
Size

796KB
MD5

e239300c20e515c6746dd5806dd036f0
SHA1

694cf81591e38b049089823871973f737b9abf2f
SHA256

8c2d8e9a19b38dedb19120f3ea448a36a8b9f13c452bd635716b1ca73b4b51fc
SHA512

b55e9282754a1296d951a3780974b1b0743faf237c62192cc8668074cf98ec12368197e6b4d575464499d2a128d2e29da464ac87170214a12e6f5d599864a5a9
SSDEEP

6144:2QQdEM945oWSHG0Vv6fM0/88C2lkDqycaX6McqiQh58La31i0G/YMVpNb82R7RAl:2nL5cQ5KT3Di2R7RvICC4VF1O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c2d8e9a19b38dedb19120f3ea448a36a8b9f13c452bd635716b1ca73b4b51fc_NeikiAnalytics.exe

Files

8c2d8e9a19b38dedb19120f3ea448a36a8b9f13c452bd635716b1ca73b4b51fc_NeikiAnalytics.exe
.dll regsvr32 windows:4 windows x86 arch:x86

72207887b132ded1eb43216912b1d602

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm60

EVENT_SINK_GetIDsOfNames
ord696
ord697
MethCallEngine
EVENT_SINK_Invoke
ord516
ord517
ord519
ord661
ord662
ord556
ord558
Zombie_GetTypeInfo
ord668
ord591
EVENT_SINK2_Release
ord592
ord702
ord521
ord523
ord709
ord631
ord525
EVENT_SINK_AddRef
ord527
ord560
ord561
ord562
DllFunctionCall
ord563
ord564
Zombie_GetTypeInfoCount
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord710
ord711
ord712
ord605
ord606
ord607
ord716
ord717
ProcCallEngine
ord536
ord537
ord644
ord538
ord539
ord570
ord648
ord572
EVENT_SINK2_AddRef
ord681
ord578
ord685
ord101
ord102
ord103
ord104
ord610
ord105
ord616
ord618
ord650
ord652
ord546
ord581

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 688KB - Virtual size: 684KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72207887b132ded1eb43216912b1d602

Headers

File Characteristics

Imports

msvbvm60

Exports

Exports

Sections

.text Size: 688KB - Virtual size: 684KB

.data Size: - Virtual size: 8KB

.rsrc Size: 76KB - Virtual size: 72KB

.reloc Size: 28KB - Virtual size: 27KB

.text
Size: 688KB - Virtual size: 684KB

.data
Size: - Virtual size: 8KB

.rsrc
Size: 76KB - Virtual size: 72KB

.reloc
Size: 28KB - Virtual size: 27KB