Behavioral task
behavioral1
Sample
b3e3841fe5b2047fd3e3455d64d3e89f58274f70f6fa7ca71e359246a773e53c_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
b3e3841fe5b2047fd3e3455d64d3e89f58274f70f6fa7ca71e359246a773e53c_NeikiAnalytics.exe
Resource
win10v2004-20240611-en
General
-
Target
b3e3841fe5b2047fd3e3455d64d3e89f58274f70f6fa7ca71e359246a773e53c_NeikiAnalytics.exe
-
Size
78KB
-
MD5
d6d5510354a21c279bb59da9264f6f00
-
SHA1
406c85236d8eb7526bbcf6bdbec31c8ee3427dc6
-
SHA256
b3e3841fe5b2047fd3e3455d64d3e89f58274f70f6fa7ca71e359246a773e53c
-
SHA512
c6defd61c6ec877d7106093a8cc96542bd30d99853548d51bacc62cca0ebb39c457dfd9f050127a22e7efd9e5a36bd57119499c341d4086c9b6386c26282c61a
-
SSDEEP
1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8jsfEiQ:enaypQSoTEiQ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b3e3841fe5b2047fd3e3455d64d3e89f58274f70f6fa7ca71e359246a773e53c_NeikiAnalytics.exe
Files
-
b3e3841fe5b2047fd3e3455d64d3e89f58274f70f6fa7ca71e359246a773e53c_NeikiAnalytics.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE