0c106922c4365bbbf539cec4bb6a9518e163ea1f77c55634f41326c6c47fd2b6_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c106922c4365bbbf539cec4bb6a9518e163ea1f77c55634f41326c6c47fd2b6_NeikiAnalytics.exe
Size

165KB
MD5

e17901e6dc7bb1dca347a185c1298eb0
SHA1

f5fcc91025219c0d856952b43cc44f0ecb6422c3
SHA256

0c106922c4365bbbf539cec4bb6a9518e163ea1f77c55634f41326c6c47fd2b6
SHA512

d1ad2ee0712e684db94ecac6cbf3acc412fa97a1285d9ebdf7bfed4322f72c5ac61b00888c637ce493ff25eefce6745e78791baf04696f33a5434f2a446d1d0f
SSDEEP

3072:Ya/g/NiJbLOHPOxRDPg7d4cd/B2BufQ9FsV:YAmTPIRDP0bBPI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c106922c4365bbbf539cec4bb6a9518e163ea1f77c55634f41326c6c47fd2b6_NeikiAnalytics.exe

Files

0c106922c4365bbbf539cec4bb6a9518e163ea1f77c55634f41326c6c47fd2b6_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\BKLV2\Desktop\SCR - MoMzGames\pbserver_battle\obj\Release\pbserver_battle.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ