ba118a1bd965499e91e640947df1ca2b75fce095954cb029ee6c9a9a841e98ee_NeikiAnalytics[.]exe | Triage

Sharing

General

Target

ba118a1bd965499e91e640947df1ca2b75fce095954cb029ee6c9a9a841e98ee_NeikiAnalytics.exe
Size

173KB
MD5

090929d5a531db850295965b4387c840
SHA1

faf923b14e1e23715d0297052ccd96d47fa622cc
SHA256

ba118a1bd965499e91e640947df1ca2b75fce095954cb029ee6c9a9a841e98ee
SHA512

c0150c77d166ffc01f6493cf805ef2e1ac7c867f4b88308183159614c98ebc521a13d7f3e3ec572d02e7aa7a9ceff06ac20ba036bb6a7998cf91bf5f5e34c177
SSDEEP

3072:AlN+k6bad3WCsXIqAfhIRcXcrFV7zZnuQu5qix1:GnaEOhFlZuQS9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba118a1bd965499e91e640947df1ca2b75fce095954cb029ee6c9a9a841e98ee_NeikiAnalytics.exe

Files

ba118a1bd965499e91e640947df1ca2b75fce095954cb029ee6c9a9a841e98ee_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\__w\1\i\obj\microsoft.management.configuration.projection.csproj_e62n60182144\release\arm\IIDOptimizer\Microsoft.Management.Configuration.Projection.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ