?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32
Static task
static1
Behavioral task
behavioral1
Sample
18c24e92b48141ab208934e93e7d3dc57aeeb691494b60e47251a980f163d028_NeikiAnalytics.dll
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
18c24e92b48141ab208934e93e7d3dc57aeeb691494b60e47251a980f163d028_NeikiAnalytics.dll
Resource
win10v2004-20240508-en
Target
18c24e92b48141ab208934e93e7d3dc57aeeb691494b60e47251a980f163d028_NeikiAnalytics.exe
Size
3KB
MD5
97e425997b38df9cc29020c6bf90d7f0
SHA1
5689065f957ead5ffdeb70c19a04d69fd9a142cc
SHA256
18c24e92b48141ab208934e93e7d3dc57aeeb691494b60e47251a980f163d028
SHA512
bf55c40c82262c1c80cb37003d43e6d241982fb9610b41d3c9fcdd020f7038959139b0fb6b34d3ff813f362994196b6f33ce13ef56ffcacfe10a7d6a0f4b3ac1
Checks for missing Authenticode signature.
resource |
---|
18c24e92b48141ab208934e93e7d3dc57aeeb691494b60e47251a980f163d028_NeikiAnalytics.exe |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ