PyInit__hashlib
Behavioral task
behavioral1
Sample
0ea01ea47997f5ee3c7107ad21d0f3cd273335454f851ac7c905b992c2474e08_NeikiAnalytics.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0ea01ea47997f5ee3c7107ad21d0f3cd273335454f851ac7c905b992c2474e08_NeikiAnalytics.dll
Resource
win10v2004-20240508-en
General
-
Target
0ea01ea47997f5ee3c7107ad21d0f3cd273335454f851ac7c905b992c2474e08_NeikiAnalytics.exe
-
Size
24KB
-
MD5
0def727496b98efb68946e4a49e99ab0
-
SHA1
bcb29d57a727ad752f7515cdf32456559f11d7ce
-
SHA256
0ea01ea47997f5ee3c7107ad21d0f3cd273335454f851ac7c905b992c2474e08
-
SHA512
87a4776c04aa6971df311f6e29af1020b571be9d628ad9e06170d1569fa4ecead63fe41f8aa0f2d16c50f12b43b1158ecbbdc57af9576a603b7ab410b71d4210
-
SSDEEP
384:iWBJbX7vT48OtaaxAAwI9C4rH7cUNr8LlHHFpBZa7gJXVaIW5IRa0sjD:xnP4bkaxBVdNYLtlrplaIW5Ig0ID
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0ea01ea47997f5ee3c7107ad21d0f3cd273335454f851ac7c905b992c2474e08_NeikiAnalytics.exe
Files
-
0ea01ea47997f5ee3c7107ad21d0f3cd273335454f851ac7c905b992c2474e08_NeikiAnalytics.exe.dll windows:6 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Exports
Exports
Sections
UPX0 Size: - Virtual size: 52KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 20KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE